ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its performance and when it identifies an intrusion attempt, it prevents it. The firewall furthermore keeps a more detailed log for the traffic than any server does, so you will be able to keep track of what's happening with your websites a lot better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it stops attacks. For instance, it recognizes if someone is trying to log in to the administrator area of a certain script several times or if a request is sent to execute a file with a specific command. In these instances these attempts set off the corresponding rules and the software hinders the attempts right away, after that records in-depth info about them in its logs. ModSecurity is one of the most effective software firewalls on the market and it can protect your web apps against thousands of threats and vulnerabilities, especially if you don’t update them or their plugins often.
ModSecurity in Cloud Hosting
We provide ModSecurity with all cloud hosting solutions, so your Internet apps will be shielded from harmful attacks. The firewall is switched on as standard for all domains and subdomains, but in case you'd like, you shall be able to stop it via the respective area of your Hepsia CP. You could also activate a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs which you'll find within Hepsia are extremely detailed and offer information about the nature of any attack, when it took place and from what IP, the firewall rule which was triggered, etc. We use a range of commercial rules which are constantly updated, but sometimes our administrators include custom rules as well so as to better protect the sites hosted on our servers.
ModSecurity in Semi-dedicated Servers
ModSecurity is a part of our semi-dedicated server plans and if you choose to host your sites with our company, there won't be anything special you'll need to do given that the firewall is activated by default for all domains and subdomains which you add using your hosting Control Panel. If required, you'll be able to disable ModSecurity for a given site or switch on the so-called detection mode in which case the firewall shall still operate and record data, but will not do anything to prevent possible attacks against your sites. Comprehensive logs will be accessible in your CP and you'll be able to see what type of attacks happened, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks came from, etc. We employ 2 types of rules on our servers - commercial ones from a firm which operates in the field of web security, and customized ones that our administrators often include to respond to newly discovered threats in a timely manner.
ModSecurity in VPS Servers
Security is very important to us, so we install ModSecurity on all VPS servers that are set up with the Hepsia CP as a standard. The firewall could be managed via a dedicated section within Hepsia and is switched on automatically when you add a new domain or generate a subdomain, so you won't have to do anything personally. You will also be able to deactivate it or switch on the so-called detection mode, so it'll keep a log of possible attacks which you can later analyze, but won't block them. The logs in both passive and active modes include information regarding the kind of the attack and how it was prevented, what IP address it came from and other useful information that could help you to tighten the security of your websites by updating them or blocking IPs, as an example. On top of the commercial rules we get for ModSecurity from a third-party security company, we also use our own rules because once in a while we detect specific attacks that aren't yet present within the commercial package. This way, we can easily enhance the protection of your Virtual private server right away rather than awaiting a certified update.
ModSecurity in Dedicated Servers
All our dedicated servers that are installed with the Hepsia hosting Control Panel come with ModSecurity, so any application you upload or set up will be secured from the very beginning and you won't need to concern yourself with common attacks or vulnerabilities. An individual section inside Hepsia will allow you to start or stop the firewall for any domain or subdomain, or activate a detection mode so that it records details about intrusions, but does not take actions to prevent them. What you'll discover in the logs can allow you to to secure your Internet sites better - the IP address an attack came from, what site was attacked as well as how, what ModSecurity rule was triggered, and so on. With this info, you could see if a site needs an update, if you need to block IPs from accessing your web server, and so on. Aside from the third-party commercial security rules for ModSecurity we use, our admins include custom ones as well every time they discover a new threat that is not yet included in the commercial bundle.