ModSecurity is an effective firewall for Apache web servers that is employed to prevent attacks toward web applications. It keeps track of the HTTP traffic to a particular site in real time and blocks any intrusion attempts the moment it discovers them. The firewall uses a set of rules to accomplish that - for instance, trying to log in to a script administrator area without success several times sets off one rule, sending a request to execute a specific file which may result in getting access to the Internet site triggers a different rule, and so on. ModSecurity is one of the best firewalls out there and it'll preserve even scripts which are not updated often since it can prevent attackers from using known exploits and security holes. Quite thorough data about every single intrusion attempt is recorded and the logs the firewall keeps are a lot more specific than the conventional logs generated by the Apache server, so you may later analyze them and determine whether you need to take additional measures so as to improve the safety of your script-driven websites.
ModSecurity in Shared Hosting
ModSecurity comes standard with all shared hosting
solutions that we offer and it will be switched on automatically for any domain or subdomain you add/create inside your Hepsia hosting CP. The firewall has three different modes, so you could switch on and disable it with only a click or set it to detection mode, so it will keep a log of all attacks, but it shall not do anything to prevent them. The log for each of your Internet sites shall include in-depth information which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules that we use are constantly updated and incorporate both commercial ones that we get from a third-party security firm and custom ones our system admins add in the event that they detect a new kind of attacks. In this way, the sites that you host here shall be a lot more secure with no action required on your end.
ModSecurity in Semi-dedicated Servers
We've incorporated ModSecurity by default in all semi-dedicated server
products, so your web apps shall be protected as soon as you install them under any domain or subdomain. The Hepsia CP which is included with the semi-dedicated accounts shall permit you to activate or turn off the firewall for any site with a mouse click. You will also be able to activate a passive detection mode through which ModSecurity shall keep a log of possible attacks without really stopping them. The thorough logs contain the nature of the attack and what ModSecurity response that attack caused, where it came from, and so on. The list of rules that we use is constantly updated in order to match any new risks which might appear on the Internet and it consists of both commercial rules that we get from a security business and custom-written ones which our administrators include in the event that they find a threat that is not present inside the commercial list yet.
ModSecurity in VPS Servers
All VPS servers
that are offered with the Hepsia CP come with ModSecurity. The firewall is installed and activated by default for all domains which are hosted on the machine, so there shall not be anything special that you'll have to do to protect your sites. It'll take you simply a click to stop ModSecurity if needed or to turn on its passive mode so that it records what happens without taking any actions to stop intrusions. You shall be able to view the logs produced in active or passive mode from the corresponding section of Hepsia and discover more about the type of the attack, where it came from, what rule the firewall employed to take care of it, etcetera. We employ a mixture of commercial and custom rules so as to make sure that ModSecurity shall stop as many risks as possible, therefore increasing the protection of your web apps as much as possible.
ModSecurity in Dedicated Servers
When you choose to host your websites on a dedicated server
with the Hepsia CP, your web apps will be protected right from the start because ModSecurity is available with all Hepsia-based packages. You'll be able to control the firewall effortlessly and if necessary, you shall be able to turn it off or activate its passive mode when it'll only keep a log of what is happening without taking any action to prevent potential attacks. The logs which you will find within the exact same section of the Control Panel are quite detailed and include info about the attacker IP address, what site and file were attacked and in what way, what rule the firewall used to stop the intrusion, etcetera. This information will allow you to take measures and boost the protection of your websites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our administrators add whenever they identify attacks that have not yet been included inside the commercial pack.