ModSecurity is a plugin for Apache web servers that functions as a web app layer firewall. It is employed to stop attacks toward script-driven websites through the use of security rules which contain certain expressions. That way, the firewall can stop hacking and spamming attempts and shield even sites which are not updated regularly. For instance, a number of unsuccessful login attempts to a script admin area or attempts to execute a specific file with the objective to get access to the script will trigger specific rules, so ModSecurity will stop these activities the minute it identifies them. The firewall is very efficient as it tracks the whole HTTP traffic to a site in real time without slowing it down, so it can prevent an attack before any damage is done. It furthermore maintains a very detailed log of all attack attempts that features more information than standard Apache logs, so you could later check out the data and take additional measures to increase the security of your sites if required.
ModSecurity in Cloud Web Hosting
ModSecurity is provided with all cloud web hosting servers, so when you choose to host your sites with our organization, they will be resistant to a wide range of attacks. The firewall is turned on as standard for all domains and subdomains, so there'll be nothing you will need to do on your end. You shall be able to stop ModSecurity for any website if necessary, or to enable a detection mode, so that all activity shall be recorded, but the firewall will not take any real action. You shall be able to view comprehensive logs from your Hepsia CP including the IP address where the attack originated from, what the attacker wanted to do and how ModSecurity handled the threat. As we take the safety of our clients' sites very seriously, we use a collection of commercial rules that we get from one of the leading companies that maintain this type of rules. Our admins also add custom rules to make sure that your sites will be resistant to as many threats as possible.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server solutions that we offer include ModSecurity and given that the firewall is turned on by default, any Internet site that you set up under a domain or a subdomain shall be protected straight away. An independent section within the Hepsia CP that comes with the semi-dedicated accounts is dedicated to ModSecurity and it shall permit you to start and stop the firewall for any Internet site or activate a detection mode. With the last mentioned, ModSecurity will not take any action, but it shall still recognize possible attacks and will keep all info in a log as if it were fully active. The logs could be found within the exact same section of the CP and they include information regarding the IP where an attack originated from, what its nature was, what rule ModSecurity applies to detect and stop it, and so on. The security rules that we employ on our web servers are a mix between commercial ones from a security business and custom ones made by our system admins. As a result, we offer greater security for your web apps as we can shield them from attacks before security firms release updates for completely new threats.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers that are set up with the Hepsia hosting CP, so your web applications shall be secured from the moment your server is in a position. The firewall is turned on by default for any domain or subdomain on the VPS, but if needed, you'll be able to disable it with a click of your mouse via the corresponding section of Hepsia. You could also set it to function in detection mode, so it shall maintain a detailed log of any possible attacks without taking any action to stop them. The logs can be found in the exact same section and offer info about the nature of the attack, what IP it came from and what ModSecurity rule was activated to stop it. For maximum security, we employ not only commercial rules from a business operating in the field of web security, but also custom ones our administrators add manually so as to react to new risks that are still not addressed in the commercial rules.
ModSecurity in Dedicated Servers
All of our dedicated servers which are installed with the Hepsia hosting CP come with ModSecurity, so any application you upload or set up shall be secured from the very beginning and you will not need to bother about common attacks or vulnerabilities. An individual section within Hepsia will allow you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records details about intrusions, but doesn't take actions to stop them. What you shall discover in the logs can easily help you to secure your websites better - the IP an attack came from, what website was attacked and in what way, what ModSecurity rule was triggered, etc. With this data, you could see whether a website needs an update, if you should block IPs from accessing your hosting server, etcetera. On top of the third-party commercial security rules for ModSecurity that we use, our admins add custom ones as well every time they find a new threat that's not yet included in the commercial bundle.