ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It is used to prevent attacks towards script-driven Internet sites through the use of security rules which contain specific expressions. This way, the firewall can block hacking and spamming attempts and preserve even websites which aren't updated regularly. For example, numerous failed login attempts to a script administrative area or attempts to execute a certain file with the purpose to get access to the script will trigger certain rules, so ModSecurity shall stop these activities the moment it identifies them. The firewall is very efficient since it screens the entire HTTP traffic to an Internet site in real time without slowing it down, so it can easily stop an attack before any harm is done. It also keeps a very comprehensive log of all attack attempts which features more info than typical Apache logs, so you can later analyze the data and take further measures to boost the security of your Internet sites if necessary.
ModSecurity in Hosting
ModSecurity is available on all hosting web servers, so if you choose to host your sites with our organization, they'll be resistant to an array of attacks. The firewall is enabled by default for all domains and subdomains, so there'll be nothing you shall have to do on your end. You will be able to stop ModSecurity for any website if required, or to switch on a detection mode, so all activity will be recorded, but the firewall won't take any real action. You shall be able to view comprehensive logs from your Hepsia Control Panel including the IP where the attack originated from, what the attacker wanted to do and how ModSecurity addressed the threat. As we take the safety of our clients' sites very seriously, we employ a collection of commercial rules that we take from one of the leading firms that maintain this kind of rules. Our admins also add custom rules to ensure that your websites will be protected against as many threats as possible.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting solutions that we offer feature ModSecurity and because the firewall is switched on by default, any site you create under a domain or a subdomain will be secured right from the start. An individual section inside the Hepsia Control Panel that comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll enable you to stop and start the firewall for any website or activate a detection mode. With the last option, ModSecurity shall not take any action, but it will still identify possible attacks and will keep all information inside a log as if it were completely active. The logs can be found in the very same section of the Control Panel and they feature information about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, etc. The security rules we employ on our machines are a mix between commercial ones from a security firm and custom ones created by our system administrators. Consequently, we offer increased security for your web apps as we can protect them from attacks even before security businesses release updates for brand new threats.
ModSecurity in VPS Web Hosting
Protection is of the utmost importance to us, so we set up ModSecurity on all virtual private servers which are set up with the Hepsia CP by default. The firewall can be managed through a dedicated section inside Hepsia and is turned on automatically when you include a new domain or create a subdomain, so you'll not have to do anything personally. You'll also be able to disable it or switch on the so-called detection mode, so it shall maintain a log of potential attacks you can later examine, but shall not block them. The logs in both passive and active modes contain details about the form of the attack and how it was stopped, what IP address it originated from and other useful info which may help you to tighten the security of your Internet sites by updating them or blocking IPs, as an example. In addition to the commercial rules which we get for ModSecurity from a third-party security enterprise, we also implement our own rules since every now and then we discover specific attacks which aren't yet present in the commercial pack. This way, we can enhance the security of your Virtual private server promptly as opposed to awaiting a certified update.
ModSecurity in Dedicated Servers Hosting
ModSecurity is included with all dedicated servers which are integrated with our Hepsia CP and you won't have to do anything specific on your end to employ it since it is activated by default every time you include a new domain or subdomain on your web server. In the event that it disrupts some of your apps, you will be able to stop it through the respective area of Hepsia, or you can leave it in passive mode, so it'll identify attacks and shall still keep a log for them, but shall not prevent them. You'll be able to look at the logs later to learn what you can do to improve the protection of your Internet sites since you shall find details such as where an intrusion attempt originated from, what Internet site was attacked and based on what rule ModSecurity reacted, etc. The rules which we use are commercial, hence they're constantly updated by a security provider, but to be on the safe side, our admins also include custom rules once in a while as to deal with any new threats they have found.