ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It is employed to prevent attacks against script-driven sites through the use of security rules that contain particular expressions. This way, the firewall can prevent hacking and spamming attempts and protect even websites that aren't updated frequently. As an example, multiple unsuccessful login attempts to a script admin area or attempts to execute a certain file with the purpose to get access to the script will trigger certain rules, so ModSecurity shall block out these activities the moment it discovers them. The firewall is incredibly efficient since it screens the entire HTTP traffic to a website in real time without slowing it down, so it will be able to prevent an attack before any harm is done. It additionally maintains an incredibly detailed log of all attack attempts that features more information than standard Apache logs, so you could later examine the data and take further measures to boost the security of your websites if needed.
ModSecurity in Cloud Web Hosting
We offer ModSecurity with all cloud web hosting plans, so your web applications shall be shielded from destructive attacks. The firewall is activated by default for all domains and subdomains, but in case you would like, you will be able to stop it using the respective section of your Hepsia CP. You could also activate a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs which you will discover in Hepsia are extremely detailed and offer data about the nature of any attack, when it occurred and from what IP, the firewall rule which was triggered, etcetera. We use a set of commercial rules that are often updated, but sometimes our admins include custom rules as well so as to efficiently protect the Internet sites hosted on our machines.
ModSecurity in Semi-dedicated Servers
ModSecurity is a part of our semi-dedicated server solutions and if you choose to host your sites with our company, there will not be anything special you'll have to do given that the firewall is switched on by default for all domains and subdomains which you include via your hosting Control Panel. If necessary, you'll be able to disable ModSecurity for a certain site or turn on the so-called detection mode in which case the firewall will still work and record info, but will not do anything to stop possible attacks against your sites. Comprehensive logs shall be available within your CP and you'll be able to see which kind of attacks happened, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, and so forth. We employ 2 sorts of rules on our servers - commercial ones from an organization that operates in the field of web security, and custom ones that our administrators occasionally include to respond to newly discovered threats in a timely manner.
ModSecurity in VPS Servers
All VPS servers which are offered with the Hepsia Control Panel come with ModSecurity. The firewall is installed and switched on by default for all domains which are hosted on the web server, so there will not be anything special which you'll have to do to protect your websites. It shall take you a click to stop ModSecurity if necessary or to switch on its passive mode so that it records what goes on without taking any actions to stop intrusions. You'll be able to look at the logs created in active or passive mode from the corresponding section of Hepsia and discover more about the form of the attack, where it came from, what rule the firewall used to take care of it, and so forth. We employ a mixture of commercial and custom rules in order to make certain that ModSecurity shall stop as many risks as possible, hence enhancing the protection of your web programs as much as possible.
ModSecurity in Dedicated Servers
All of our dedicated servers which are set up with the Hepsia hosting CP feature ModSecurity, so any application that you upload or install will be properly secured from the very beginning and you won't need to worry about common attacks or vulnerabilities. A separate section inside Hepsia will permit you to start or stop the firewall for any domain or subdomain, or turn on a detection mode so that it records info about intrusions, but doesn't take actions to stop them. What you will discover in the logs can enable you to to secure your sites better - the IP an attack came from, what website was attacked as well as how, what ModSecurity rule was triggered, etc. With this information, you could see whether a website needs an update, whether you should block IPs from accessing your web server, etc. In addition to the third-party commercial security rules for ModSecurity that we use, our admins include custom ones as well when they discover a new threat that's not yet included in the commercial bundle.