ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its overall performance and if it identifies an intrusion attempt, it prevents it. The firewall furthermore keeps a more detailed log for the traffic than any web server does, so you will be able to monitor what is happening with your Internet sites a lot better than if you rely merely on conventional logs. ModSecurity works with security rules based on which it stops attacks. For instance, it recognizes whether anyone is attempting to log in to the administration area of a specific script a number of times or if a request is sent to execute a file with a particular command. In these cases these attempts trigger the corresponding rules and the software blocks the attempts in real time, and then records in-depth information about them in its logs. ModSecurity is amongst the very best software firewalls out there and it can easily protect your web applications against a large number of threats and vulnerabilities, particularly in case you don’t update them or their plugins regularly.
ModSecurity in Shared Hosting
ModSecurity can be found with each and every shared hosting solution that we offer and it is activated by default for every domain or subdomain that you add through your Hepsia CP. In the event that it interferes with any of your applications or you would like to disable it for whatever reason, you will be able to do that through the ModSecurity section of Hepsia with only a mouse click. You can also use a passive mode, so the firewall will recognize potential attacks and maintain a log, but will not take any action. You'll be able to see extensive logs in the very same section, including the IP address where the attack originated from, exactly what the attacker tried to do and at what time, what ModSecurity did, etc. For maximum safety of our clients we use a group of commercial firewall rules blended with custom ones which are included by our system administrators.
ModSecurity in Semi-dedicated Servers
We've integrated ModSecurity by default inside all semi-dedicated server packages, so your web applications will be protected whenever you install them under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts will allow you to switch on or turn off the firewall for any site with a click. You will also have the ability to activate a passive detection mode in which ModSecurity will keep a log of possible attacks without actually preventing them. The thorough logs include things like the nature of the attack and what ModSecurity response this attack triggered, where it came from, and so on. The list of rules we use is regularly updated in order to match any new threats that could appear on the Internet and it features both commercial rules that we get from a security corporation and custom-written ones which our admins include in case they discover a threat that is not present in the commercial list yet.
ModSecurity in VPS Servers
All VPS servers which are offered with the Hepsia CP come with ModSecurity. The firewall is installed and turned on by default for all domains which are hosted on the web server, so there won't be anything special that you'll have to do to protect your websites. It will take you only a click to stop ModSecurity if necessary or to turn on its passive mode so that it records what goes on without taking any steps to prevent intrusions. You'll be able to see the logs produced in active or passive mode from the corresponding section of Hepsia and find out more about the form of the attack, where it came from, what rule the firewall used to tackle it, etcetera. We use a mixture of commercial and custom rules in order to make certain that ModSecurity shall block out as many risks as possible, consequently increasing the security of your web applications as much as possible.
ModSecurity in Dedicated Servers
When you decide to host your Internet sites on a dedicated server with the Hepsia CP, your web programs shall be protected right from the start as ModSecurity is provided with all Hepsia-based packages. You'll be able to manage the firewall without difficulty and if required, you will be able to turn it off or switch on its passive mode when it'll only maintain a log of what's occurring without taking any action to prevent possible attacks. The logs that you will find inside the same section of the CP are really detailed and contain data about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, etcetera. This information will enable you to take measures and enhance the security of your websites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our staff include every time they detect attacks that have not yet been included within the commercial pack.