ModSecurity is an effective firewall for Apache web servers that's employed to prevent attacks toward web applications. It keeps track of the HTTP traffic to a particular website in real time and stops any intrusion attempts as soon as it identifies them. The firewall uses a set of rules to do that - as an illustration, trying to log in to a script admin area without success many times activates one rule, sending a request to execute a specific file which could result in getting access to the Internet site triggers a different rule, etcetera. ModSecurity is amongst the best firewalls available and it'll protect even scripts which are not updated on a regular basis because it can prevent attackers from using known exploits and security holes. Incredibly comprehensive info about each intrusion attempt is recorded and the logs the firewall maintains are far more comprehensive than the standard logs created by the Apache server, so you can later analyze them and decide whether you need to take additional measures in order to boost the protection of your script-driven websites.
ModSecurity in Shared Website Hosting
ModSecurity comes by default with all shared website hosting
packages which we offer and it shall be turned on automatically for any domain or subdomain you add/create inside your Hepsia hosting CP. The firewall has 3 different modes, so you could activate and disable it with just a mouse click or set it to detection mode, so it'll maintain a log of all attacks, but it shall not do anything to stop them. The log for each of your Internet sites will contain detailed information such as the nature of the attack, where it came from, what action was taken by ModSecurity, etcetera. The firewall rules we use are regularly updated and comprise of both commercial ones we get from a third-party security company and custom ones our system admins add in the event that they detect a new type of attacks. This way, the Internet sites you host here will be far more secure without any action expected on your end.
ModSecurity in Semi-dedicated Hosting
ModSecurity is part of our semi-dedicated hosting
plans and if you opt to host your Internet sites with our company, there won't be anything special you'll need to do as the firewall is activated by default for all domains and subdomains you include via your hosting Control Panel. If needed, you could disable ModSecurity for a particular Internet site or turn on the so-called detection mode in which case the firewall will still operate and record data, but will not do anything to stop possible attacks on your Internet sites. In depth logs shall be available within your CP and you'll be able to see which kind of attacks happened, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks came from, etcetera. We use 2 types of rules on our servers - commercial ones from an organization which operates in the field of web security, and custom ones which our administrators sometimes include to respond to newly identified risks promptly.
ModSecurity in VPS Hosting
ModSecurity comes with all Hepsia-based virtual private servers
that we offer and it will be switched on automatically for any new domain or subdomain that you include on the hosting server. That way, any web application that you install shall be secured right from the start without doing anything manually on your end. The firewall could be managed through the section of the CP which bears the same name. This is the area whereyou'll be able to switch off ModSecurity or let its passive mode, so it will not take any action against threats, but shall still keep a comprehensive log. The recorded information is available inside the same area as well and you'll be able to see what IPs any attacks came from so that you can stop them, what the nature of the attempted attacks was and based on what security rules ModSecurity reacted. The rules that we use on our servers are a mixture between commercial ones which we obtain from a security firm and custom ones that are included by our administrators to maximize the security of any web applications hosted on our end.
ModSecurity in Dedicated Web Hosting
ModSecurity is available by default with all dedicated servers
which are set up with the Hepsia CP and is set to “Active” automatically for any domain you host or subdomain that you create on the hosting server. In the event that a web application doesn't function properly, you can either switch off the firewall or set it to work in passive mode. The latter means that ModSecurity shall maintain a log of any possible attack which might take place, but won't take any action to prevent it. The logs generated in passive or active mode will offer you additional details about the exact file which was attacked, the type of the attack and the IP it came from, etc. This data will permit you to choose what steps you can take to increase the protection of your Internet sites, including blocking IPs or performing script and plugin updates. The ModSecurity rules that we employ are updated often with a commercial pack from a third-party security company we work with, but oftentimes our admins include their own rules too when they come across a new potential threat.