ModSecurity is an efficient firewall for Apache web servers that is used to stop attacks towards web apps. It keeps track of the HTTP traffic to a given website in real time and prevents any intrusion attempts the instant it discovers them. The firewall relies on a set of rules to do that - as an example, attempting to log in to a script admin area without success several times sets off one rule, sending a request to execute a particular file which may result in gaining access to the website triggers a different rule, etc. ModSecurity is one of the best firewalls around and it'll preserve even scripts which are not updated often because it can prevent attackers from using known exploits and security holes. Very detailed data about every single intrusion attempt is recorded and the logs the firewall maintains are much more comprehensive than the conventional logs created by the Apache server, so you may later examine them and decide if you need to take more measures in order to increase the protection of your script-driven websites.
ModSecurity in Shared Hosting
ModSecurity is provided with all shared hosting servers, so if you decide to host your Internet sites with our business, they shall be resistant to an array of attacks. The firewall is turned on as standard for all domains and subdomains, so there'll be nothing you will have to do on your end. You shall be able to stop ModSecurity for any website if needed, or to enable a detection mode, so all activity shall be recorded, but the firewall will not take any real action. You'll be able to view specific logs using your Hepsia CP including the IP address where the attack came from, what the attacker wanted to do and how ModSecurity dealt with the threat. As we take the safety of our clients' sites very seriously, we use a selection of commercial rules which we take from one of the leading companies which maintain this type of rules. Our admins also include custom rules to make certain that your websites will be shielded from as many risks as possible.
ModSecurity in Semi-dedicated Hosting
Any web app which you set up inside your new semi-dedicated hosting account will be protected by ModSecurity since the firewall comes with all our hosting packages and is switched on by default for any domain and subdomain you add or create via your Hepsia hosting CP. You'll be able to manage ModSecurity through a dedicated area inside Hepsia where not simply could you activate or deactivate it entirely, but you can also activate a passive mode, so the firewall shall not stop anything, but it'll still maintain an archive of possible attacks. This requires simply a mouse click and you will be able to look at the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was dealt with, etc. The firewall employs two groups of rules on our web servers - a commercial one which we get from a third-party web security firm and a custom one that our administrators update manually as to respond to newly discovered threats as soon as possible.
ModSecurity in VPS
ModSecurity is provided with all Hepsia-based virtual private servers that we offer and it'll be turned on automatically for any new domain or subdomain you include on the machine. This way, any web application that you install shall be protected right away without doing anything personally on your end. The firewall could be managed through the section of the CP which has the same name. This is the place whereyou can switch off ModSecurity or activate its passive mode, so it will not take any action towards threats, but shall still maintain a detailed log. The recorded information is available in the same area as well and you will be able to see what IPs any attacks came from so that you can stop them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules we employ on our servers are a mixture between commercial ones we get from a security organization and custom ones which are added by our admins to optimize the security of any web apps hosted on our end.
ModSecurity in Dedicated Hosting
ModSecurity is provided with all dedicated servers which are set up with our Hepsia Control Panel and you won't have to do anything specific on your end to use it as it is switched on by default every time you add a new domain or subdomain on your hosting server. If it disrupts any of your applications, you will be able to stop it through the respective section of Hepsia, or you may leave it in passive mode, so it will recognize attacks and shall still keep a log for them, but shall not stop them. You can look at the logs later to determine what you can do to increase the safety of your websites since you shall find information such as where an intrusion attempt came from, what Internet site was attacked and based on what rule ModSecurity responded, etcetera. The rules that we use are commercial, thus they're regularly updated by a security firm, but to be on the safe side, our administrators also include custom rules occasionally in order to deal with any new threats they have identified.