ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its operation and if it discovers an intrusion attempt, it prevents it. The firewall additionally maintains a more thorough log for the website visitors than any server does, so you'll manage to keep track of what is going on with your sites much better than if you rely only on standard logs. ModSecurity works with security rules based on which it helps prevent attacks. For example, it detects whether someone is attempting to log in to the administrator area of a certain script multiple times or if a request is sent to execute a file with a specific command. In such situations these attempts set off the corresponding rules and the firewall software blocks the attempts right away, and then records detailed info about them inside its logs. ModSecurity is among the very best software firewalls out there and it can protect your web apps against many threats and vulnerabilities, particularly in case you don’t update them or their plugins regularly.
ModSecurity in Shared Hosting
ModSecurity can be found with every shared hosting plan which we provide and it is activated by default for every domain or subdomain which you include through your Hepsia Control Panel. In the event that it interferes with any of your applications or you would like to disable it for some reason, you'll be able to accomplish that through the ModSecurity area of Hepsia with just a click. You may also enable a passive mode, so the firewall will detect potential attacks and maintain a log, but shall not take any action. You can see comprehensive logs in the very same section, including the IP address where the attack originated from, what exactly the attacker tried to do and at what time, what ModSecurity did, and so forth. For max security of our clients we use a group of commercial firewall rules mixed with custom ones which are included by our system admins.
ModSecurity in Semi-dedicated Hosting
Any web program you set up in your new semi-dedicated hosting account will be protected by ModSecurity since the firewall is provided with all our hosting solutions and is activated by default for any domain and subdomain that you add or create via your Hepsia hosting Control Panel. You'll be able to manage ModSecurity via a dedicated section in Hepsia where not simply could you activate or deactivate it fully, but you can also activate a passive mode, so the firewall will not stop anything, but it'll still maintain a record of potential attacks. This takes only a mouse click and you shall be able to look at the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was taken care of, etc. The firewall employs 2 groups of rules on our servers - a commercial one which we get from a third-party web security company and a custom one that our administrators update manually in order to respond to newly discovered threats as soon as possible.
ModSecurity in VPS Hosting
All virtual private servers that are offered with the Hepsia CP come with ModSecurity. The firewall is installed and activated by default for all domains that are hosted on the machine, so there will not be anything special which you will have to do to protect your sites. It shall take you simply a click to stop ModSecurity if necessary or to activate its passive mode so that it records what occurs without taking any measures to prevent intrusions. You shall be able to view the logs generated in active or passive mode via the corresponding section of Hepsia and discover more about the form of the attack, where it originated from, what rule the firewall used to take care of it, etc. We use a combination of commercial and custom rules so as to ensure that ModSecurity will block as many risks as possible, consequently enhancing the security of your web applications as much as possible.
ModSecurity in Dedicated Web Hosting
ModSecurity is included with all dedicated servers which are integrated with our Hepsia CP and you'll not have to do anything specific on your end to employ it as it is activated by default every time you add a new domain or subdomain on your server. In case it interferes with some of your apps, you shall be able to stop it via the respective area of Hepsia, or you can leave it in passive mode, so it shall detect attacks and will still maintain a log for them, but shall not stop them. You'll be able to look at the logs later to determine what you can do to boost the protection of your websites as you'll find details such as where an intrusion attempt came from, what site was attacked and in accordance with what rule ModSecurity responded, and so forth. The rules we use are commercial, hence they are constantly updated by a security provider, but to be on the safe side, our admins also add custom rules from time to time in order to react to any new threats they have discovered.