ModSecurity is an efficient firewall for Apache web servers that is employed to prevent attacks towards web apps. It tracks the HTTP traffic to a specific website in real time and blocks any intrusion attempts as soon as it identifies them. The firewall relies on a set of rules to do that - for instance, attempting to log in to a script administration area without success a few times sets off one rule, sending a request to execute a particular file that could result in accessing the Internet site triggers a different rule, etcetera. ModSecurity is amongst the best firewalls available on the market and it'll preserve even scripts which are not updated frequently because it can prevent attackers from using known exploits and security holes. Quite thorough information about each and every intrusion attempt is recorded and the logs the firewall maintains are much more detailed than the standard logs provided by the Apache server, so you may later take a look at them and decide whether you need to take additional measures so as to increase the safety of your script-driven websites.
ModSecurity in Cloud Hosting
We offer ModSecurity with all cloud hosting packages, so your Internet apps will be protected against destructive attacks. The firewall is switched on as standard for all domains and subdomains, but in case you would like, you'll be able to stop it using the respective section of your Hepsia Control Panel. You could also switch on a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you'll find in Hepsia are quite detailed and feature data about the nature of any attack, when it transpired and from what IP address, the firewall rule which was triggered, etc. We employ a set of commercial rules which are frequently updated, but sometimes our admins include custom rules as well so as to better protect the sites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting solutions that we offer include ModSecurity and since the firewall is switched on by default, any site which you set up under a domain or a subdomain shall be secured right from the start. An individual section in the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll allow you to stop and start the firewall for any website or enable a detection mode. With the last mentioned, ModSecurity won't take any action, but it will still identify possible attacks and will keep all data in a log as if it were completely active. The logs could be found in the same section of the CP and they feature info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, and so forth. The security rules which we employ on our servers are a mix of commercial ones from a security firm and custom ones made by our system administrators. Therefore, we offer increased security for your web apps as we can protect them from attacks even before security companies release updates for completely new threats.
ModSecurity in VPS Hosting
Security is of the utmost importance to us, so we install ModSecurity on all virtual private servers that are set up with the Hepsia Control Panel by default. The firewall can be managed through a dedicated section within Hepsia and is switched on automatically when you include a new domain or create a subdomain, so you'll not need to do anything personally. You shall also be able to deactivate it or turn on the so-called detection mode, so it'll keep a log of possible attacks that you can later analyze, but won't prevent them. The logs in both passive and active modes offer information regarding the type of the attack and how it was prevented, what IP it originated from and other valuable info that may help you to tighten the security of your Internet sites by updating them or blocking IPs, for example. Beyond the commercial rules we get for ModSecurity from a third-party security enterprise, we also use our own rules since from time to time we identify specific attacks which aren't yet present in the commercial pack. That way, we could increase the security of your VPS immediately rather than awaiting an official update.
ModSecurity in Dedicated Web Hosting
ModSecurity comes with all dedicated servers which are set up with our Hepsia Control Panel and you'll not have to do anything specific on your end to employ it because it is enabled by default every time you add a new domain or subdomain on your server. In the event that it disrupts any of your programs, you will be able to stop it via the respective part of Hepsia, or you can leave it in passive mode, so it will identify attacks and will still maintain a log for them, but shall not prevent them. You'll be able to analyze the logs later to find out what you can do to increase the protection of your sites as you shall find information such as where an intrusion attempt came from, what website was attacked and based on what rule ModSecurity responded, etcetera. The rules we employ are commercial, thus they are regularly updated by a security company, but to be on the safe side, our administrators also add custom rules once in a while in order to react to any new threats they have found.