ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its overall performance and in case it discovers an intrusion attempt, it blocks it. The firewall additionally maintains a more detailed log for the traffic than any web server does, so you'll be able to keep an eye on what's happening with your Internet sites better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it stops attacks. For example, it identifies if someone is trying to log in to the administration area of a given script several times or if a request is sent to execute a file with a specific command. In such instances these attempts trigger the corresponding rules and the firewall software blocks the attempts instantly, then records detailed info about them in its logs. ModSecurity is among the most effective software firewalls on the market and it can easily protect your web applications against many threats and vulnerabilities, particularly if you don’t update them or their plugins often.
ModSecurity in Shared Hosting
ModSecurity comes by default with all shared hosting plans that we offer and it'll be switched on automatically for any domain or subdomain that you add/create inside your Hepsia hosting CP. The firewall has 3 different modes, so you could activate and deactivate it with just a mouse click or set it to detection mode, so it will keep a log of all attacks, but it'll not do anything to stop them. The log for each of your websites will include in-depth information which includes the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules that we use are regularly updated and comprise of both commercial ones that we get from a third-party security firm and custom ones which our system admins include in case that they detect a new sort of attacks. In this way, the sites you host here shall be way more secure without any action expected on your end.
ModSecurity in Semi-dedicated Hosting
Any web program you install in your new semi-dedicated hosting account will be protected by ModSecurity because the firewall is provided with all our hosting packages and is turned on by default for any domain and subdomain that you include or create using your Hepsia hosting CP. You'll be able to manage ModSecurity via a dedicated section in Hepsia where not only can you activate or deactivate it entirely, but you can also activate a passive mode, so the firewall shall not stop anything, but it shall still keep a record of potential attacks. This normally requires just a click and you will be able to look at the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was addressed, etcetera. The firewall uses two sets of rules on our servers - a commercial one that we get from a third-party web security provider and a custom one which our admins update manually as to respond to recently discovered risks immediately.
ModSecurity in VPS Web Hosting
ModSecurity is provided with all Hepsia-based virtual private servers that we offer and it will be switched on automatically for any new domain or subdomain you add on the hosting server. That way, any web application that you install shall be secured from the very beginning without doing anything manually on your end. The firewall could be handled from the section of the Control Panel which has the same name. This is the place in whichyou can switch off ModSecurity or enable its passive mode, so it will not take any action against threats, but shall still keep a detailed log. The recorded information is available inside the same area as well and you'll be able to see what IPs any attacks came from to enable you to stop them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity reacted. The rules which we use on our servers are a blend between commercial ones which we get from a security company and custom ones which are added by our administrators to maximize the security of any web apps hosted on our end.
ModSecurity in Dedicated Servers Hosting
ModSecurity is provided with all dedicated servers which are integrated with our Hepsia Control Panel and you'll not need to do anything specific on your end to employ it since it's turned on by default every time you add a new domain or subdomain on your web server. In case it disrupts some of your apps, you'll be able to stop it via the respective section of Hepsia, or you can leave it working in passive mode, so it'll detect attacks and shall still keep a log for them, but will not block them. You may examine the logs later to determine what you can do to improve the protection of your websites since you will find information such as where an intrusion attempt came from, what site was attacked and based on what rule ModSecurity responded, and so on. The rules that we employ are commercial, thus they're constantly updated by a security firm, but to be on the safe side, our staff also add custom rules from time to time as to deal with any new threats they have discovered.