ModSecurity is a highly effective firewall for Apache web servers that's used to stop attacks against web apps. It monitors the HTTP traffic to a specific website in real time and prevents any intrusion attempts the moment it discovers them. The firewall relies on a set of rules to accomplish that - for example, attempting to log in to a script administration area without success several times activates one rule, sending a request to execute a specific file that could result in gaining access to the website triggers a different rule, and so forth. ModSecurity is among the best firewalls out there and it'll protect even scripts that are not updated frequently as it can prevent attackers from using known exploits and security holes. Very thorough information about every intrusion attempt is recorded and the logs the firewall maintains are a lot more specific than the regular logs provided by the Apache server, so you may later take a look at them and determine if you need to take more measures in order to improve the safety of your script-driven Internet sites.
ModSecurity in Cloud Hosting
We offer ModSecurity with all cloud hosting solutions, so your web applications will be shielded from destructive attacks. The firewall is activated as standard for all domains and subdomains, but if you'd like, you'll be able to stop it through the respective part of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs which you'll discover in Hepsia are quite detailed and include data about the nature of any attack, when it transpired and from what IP, the firewall rule which was triggered, and so on. We use a set of commercial rules which are often updated, but sometimes our admins include custom rules as well in order to efficiently protect the websites hosted on our servers.
ModSecurity in Semi-dedicated Hosting
ModSecurity is a part of our semi-dedicated hosting solutions and if you choose to host your sites with us, there will not be anything special you'll have to do since the firewall is turned on by default for all domains and subdomains which you add through your hosting CP. If required, you could disable ModSecurity for a certain website or activate the so-called detection mode in which case the firewall shall still operate and record info, but won't do anything to stop possible attacks against your Internet sites. In depth logs will be accessible inside your CP and you'll be able to see which kind of attacks took place, what security rules were triggered and how the firewall handled the threats, what IP addresses the attacks originated from, etc. We employ 2 types of rules on our servers - commercial ones from an organization which operates in the field of web security, and custom ones which our admins often include to respond to newly identified threats on time.
ModSecurity in VPS Web Hosting
ModSecurity is pre-installed on all virtual private servers which are offered with the Hepsia hosting Control Panel, so your web applications will be secured from the instant your server is in a position. The firewall is turned on by default for any domain or subdomain on the VPS, but if necessary, you could disable it with a click from the corresponding section of Hepsia. You can also set it to function in detection mode, so it shall keep a comprehensive log of any possible attacks without taking any action to prevent them. The logs are available in the very same section and provide info about the nature of the attack, what IP it originated from and what ModSecurity rule was triggered to stop it. For maximum security, we employ not simply commercial rules from a company working in the field of web security, but also custom ones our admins include personally in order to react to new threats which are still not addressed in the commercial rules.
ModSecurity in Dedicated Servers Hosting
ModSecurity is included with all dedicated servers which are set up with our Hepsia Control Panel and you will not need to do anything specific on your end to use it since it is enabled by default whenever you include a new domain or subdomain on your server. If it disrupts any of your applications, you will be able to stop it via the respective part of Hepsia, or you can leave it in passive mode, so it shall recognize attacks and will still maintain a log for them, but won't prevent them. You may look at the logs later to learn what you can do to increase the safety of your websites as you will find details such as where an intrusion attempt came from, what site was attacked and based on what rule ModSecurity responded, etcetera. The rules which we use are commercial, thus they're constantly updated by a security firm, but to be on the safe side, our admins also include custom rules every now and then in order to respond to any new threats they have discovered.