ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It is used to stop attacks toward script-driven sites through the use of security rules that contain certain expressions. In this way, the firewall can prevent hacking and spamming attempts and preserve even websites which are not updated regularly. For instance, a number of unsuccessful login attempts to a script admin area or attempts to execute a specific file with the objective to get access to the script shall trigger specific rules, so ModSecurity will block out these activities the instant it detects them. The firewall is quite efficient since it screens the whole HTTP traffic to a website in real time without slowing it down, so it can easily stop an attack before any damage is done. It additionally keeps an exceptionally comprehensive log of all attack attempts which features more information than traditional Apache logs, so you could later examine the data and take extra measures to enhance the security of your sites if necessary.
ModSecurity in Shared Hosting
We provide ModSecurity with all shared hosting
solutions, so your Internet applications shall be shielded from harmful attacks. The firewall is activated as standard for all domains and subdomains, but if you'd like, you will be able to stop it using the respective section of your Hepsia CP. You can also activate a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs that you will discover inside Hepsia are extremely detailed and offer information about the nature of any attack, when it took place and from what IP address, the firewall rule that was triggered, etcetera. We use a range of commercial rules which are regularly updated, but sometimes our admins include custom rules as well in order to better protect the websites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
ModSecurity is a part of our semi-dedicated hosting
packages and if you opt to host your Internet sites with us, there won't be anything special you will have to do since the firewall is turned on by default for all domains and subdomains that you include through your hosting Control Panel. If required, you can disable ModSecurity for a given site or enable the so-called detection mode in which case the firewall will still work and record info, but will not do anything to stop potential attacks against your Internet sites. In depth logs shall be accessible in your Control Panel and you'll be able to see what type of attacks happened, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks originated from, etcetera. We employ 2 sorts of rules on our servers - commercial ones from a company that operates in the field of web security, and custom made ones which our admins occasionally include to respond to newly identified threats promptly.
ModSecurity in VPS Hosting
All virtual private servers
that are provided with the Hepsia Control Panel come with ModSecurity. The firewall is installed and switched on by default for all domains that are hosted on the machine, so there won't be anything special which you'll need to do to protect your Internet sites. It shall take you only a click to stop ModSecurity if necessary or to turn on its passive mode so that it records what happens without taking any steps to prevent intrusions. You shall be able to look at the logs created in passive or active mode from the corresponding section of Hepsia and discover more about the type of the attack, where it originated from, what rule the firewall used to tackle it, etc. We employ a combination of commercial and custom rules so as to make sure that ModSecurity will stop as many threats as possible, hence improving the security of your web programs as much as possible.
ModSecurity in Dedicated Web Hosting
ModSecurity is provided with all dedicated servers
which are integrated with our Hepsia Control Panel and you will not need to do anything specific on your end to employ it as it's enabled by default whenever you include a new domain or subdomain on your server. In the event that it interferes with any of your programs, you shall be able to stop it through the respective area of Hepsia, or you can leave it operating in passive mode, so it'll identify attacks and shall still keep a log for them, but won't stop them. You can look at the logs later to find out what you can do to enhance the protection of your Internet sites since you will find details such as where an intrusion attempt came from, what Internet site was attacked and based upon what rule ModSecurity reacted, and so forth. The rules which we use are commercial, therefore they're regularly updated by a security provider, but to be on the safe side, our admins also include custom rules once in a while as to respond to any new threats they have identified.