ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its performance and if it identifies an intrusion attempt, it prevents it. The firewall also keeps a more thorough log for the website visitors than any web server does, so you will manage to keep an eye on what is going on with your sites much better than if you rely simply on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it identifies whether anyone is trying to log in to the administrator area of a specific script multiple times or if a request is sent to execute a file with a particular command. In such cases these attempts set off the corresponding rules and the software blocks the attempts instantly, and then records comprehensive details about them in its logs. ModSecurity is one of the best software firewalls out there and it can protect your web applications against thousands of threats and vulnerabilities, particularly in case you don’t update them or their plugins frequently.
ModSecurity in Shared Web Hosting
We provide ModSecurity with all shared web hosting
plans, so your web apps will be protected against harmful attacks. The firewall is turned on as standard for all domains and subdomains, but if you'd like, you'll be able to stop it using the respective area of your Hepsia Control Panel. You'll be able to also switch on a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you shall find inside Hepsia are extremely detailed and offer data about the nature of any attack, when it occurred and from what IP, the firewall rule that was triggered, etcetera. We use a set of commercial rules which are often updated, but sometimes our admins include custom rules as well in order to better protect the Internet sites hosted on our machines.
ModSecurity in Semi-dedicated Servers
We have included ModSecurity as a standard in all semi-dedicated server
products, so your web apps will be protected the instant you set them up under any domain or subdomain. The Hepsia CP which comes with the semi-dedicated accounts will allow you to switch on or turn off the firewall for any Internet site with a click. You'll also have the ability to switch on a passive detection mode in which ModSecurity will keep a log of possible attacks without really preventing them. The thorough logs include things like the nature of the attack and what ModSecurity response this attack activated, where it originated from, and so on. The list of rules we use is regularly updated in order to match any new risks which could appear on the Internet and it features both commercial rules that we get from a security company and custom-written ones which our administrators include in the event that they discover a threat that is not present inside the commercial list yet.
ModSecurity in VPS Servers
All VPS servers
that are offered with the Hepsia CP come with ModSecurity. The firewall is installed and activated by default for all domains that are hosted on the web server, so there will not be anything special which you will have to do to protect your websites. It will take you simply a click to stop ModSecurity if needed or to turn on its passive mode so that it records what occurs without taking any steps to stop intrusions. You will be able to look at the logs produced in passive or active mode through the corresponding section of Hepsia and find out more about the form of the attack, where it came from, what rule the firewall used to deal with it, etc. We use a mix of commercial and custom rules so as to ensure that ModSecurity shall prevent as many risks as possible, hence boosting the protection of your web programs as much as possible.
ModSecurity in Dedicated Servers
If you choose to host your Internet sites on a dedicated server
with the Hepsia CP, your web apps shall be protected right from the start as ModSecurity is available with all Hepsia-based plans. You'll be able to regulate the firewall easily and if needed, you shall be able to turn it off or enable its passive mode when it shall only keep a log of what's happening without taking any action to stop potential attacks. The logs that you can find within the same section of the Control Panel are really detailed and contain information about the attacker IP, what website and file were attacked and in what ways, what rule the firewall used to stop the intrusion, and so on. This data shall permit you to take measures and increase the security of your Internet sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones which our staff include every time they recognize attacks that have not yet been included within the commercial pack.