ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It's used to prevent attacks against script-driven sites by employing security rules that contain specific expressions. That way, the firewall can stop hacking and spamming attempts and protect even Internet sites that are not updated often. As an example, multiple failed login attempts to a script admin area or attempts to execute a certain file with the intention to get access to the script will trigger specific rules, so ModSecurity shall block these activities the moment it detects them. The firewall is very efficient since it monitors the entire HTTP traffic to an Internet site in real time without slowing it down, so it can easily prevent an attack before any damage is done. It additionally keeps an incredibly detailed log of all attack attempts that contains more information than standard Apache logs, so you could later examine the data and take additional measures to improve the security of your websites if necessary.
ModSecurity in Shared Hosting
ModSecurity is available on all shared hosting machines, so if you opt to host your Internet sites with our firm, they shall be protected against an array of attacks. The firewall is enabled as standard for all domains and subdomains, so there shall be nothing you will have to do on your end. You shall be able to stop ModSecurity for any site if required, or to switch on a detection mode, so all activity shall be recorded, but the firewall shall not take any real action. You will be able to view detailed logs via your Hepsia CP including the IP where the attack came from, what the attacker wanted to do and how ModSecurity handled the threat. Since we take the protection of our customers' sites very seriously, we employ a set of commercial rules that we get from one of the best firms that maintain this type of rules. Our admins also add custom rules to ensure that your websites will be shielded from as many risks as possible.
ModSecurity in Semi-dedicated Hosting
Any web program you set up in your new semi-dedicated hosting account will be protected by ModSecurity as the firewall is included with all our hosting solutions and is turned on by default for any domain and subdomain that you add or create via your Hepsia hosting CP. You will be able to manage ModSecurity via a dedicated area within Hepsia where not simply could you activate or deactivate it fully, but you may also activate a passive mode, so the firewall shall not stop anything, but it'll still keep an archive of possible attacks. This normally requires only a mouse click and you'll be able to look at the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was dealt with, and so forth. The firewall uses 2 sets of rules on our web servers - a commercial one that we get from a third-party web security company and a custom one that our administrators update manually as to respond to recently discovered risks as fast as possible.
ModSecurity in VPS Web Hosting
ModSecurity is pre-installed on all virtual private servers which are set up with the Hepsia hosting Control Panel, so your web applications will be protected from the moment your server is ready. The firewall is activated by default for any domain or subdomain on the VPS, but if required, you'll be able to disable it with a mouse click from the corresponding section of Hepsia. You can also set it to operate in detection mode, so it shall maintain a detailed log of any possible attacks without taking any action to prevent them. The logs are available in the exact same section and offer details about the nature of the attack, what IP address it came from and what ModSecurity rule was triggered to stop it. For maximum security, we employ not just commercial rules from a business working in the field of web security, but also custom ones which our administrators include manually in order to respond to new risks which are still not dealt with in the commercial rules.
ModSecurity in Dedicated Servers Hosting
ModSecurity comes with all dedicated servers that are set up with our Hepsia Control Panel and you will not need to do anything specific on your end to employ it since it's enabled by default each time you include a new domain or subdomain on your server. In case it disrupts any of your apps, you'll be able to stop it through the respective section of Hepsia, or you can leave it in passive mode, so it will identify attacks and will still maintain a log for them, but won't prevent them. You could analyze the logs later to determine what you can do to improve the security of your sites since you will find info such as where an intrusion attempt originated from, what website was attacked and based on what rule ModSecurity reacted, and so on. The rules we employ are commercial, thus they are frequently updated by a security company, but to be on the safe side, our admins also include custom rules occasionally as to deal with any new threats they have identified.