ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It's used to prevent attacks towards script-driven websites by employing security rules which contain particular expressions. That way, the firewall can stop hacking and spamming attempts and shield even Internet sites that are not updated often. As an example, several unsuccessful login attempts to a script administrative area or attempts to execute a particular file with the objective to get access to the script will trigger particular rules, so ModSecurity shall stop these activities the moment it discovers them. The firewall is extremely efficient because it tracks the entire HTTP traffic to a site in real time without slowing it down, so it can stop an attack before any harm is done. It also maintains an exceptionally comprehensive log of all attack attempts that features more info than conventional Apache logs, so you could later analyze the data and take extra measures to enhance the security of your websites if necessary.
ModSecurity in Shared Website Hosting
ModSecurity comes standard with all shared website hosting packages that we supply and it'll be activated automatically for any domain or subdomain which you add/create within your Hepsia hosting Control Panel. The firewall has 3 different modes, so you'll be able to switch on and deactivate it with a click or set it to detection mode, so it shall maintain a log of all attacks, but it shall not do anything to prevent them. The log for each of your Internet sites shall contain detailed information including the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules we use are constantly updated and incorporate both commercial ones that we get from a third-party security company and custom ones our system admins add in the event that they detect a new sort of attacks. In this way, the websites which you host here will be much more protected with no action needed on your end.
ModSecurity in Semi-dedicated Servers
We've integrated ModSecurity by default inside all semi-dedicated server plans, so your web applications will be protected the instant you install them under any domain or subdomain. The Hepsia CP which comes with the semi-dedicated accounts will permit you to activate or disable the firewall for any Internet site with a click. You will also have the ability to switch on a passive detection mode in which ModSecurity will maintain a log of potential attacks without actually preventing them. The comprehensive logs include things like the nature of the attack and what ModSecurity response this attack activated, where it came from, and so on. The list of rules we use is constantly updated as to match any new risks that might appear on the Internet and it includes both commercial rules that we get from a security firm and custom-written ones that our administrators include in case they find a threat that is not present within the commercial list yet.
ModSecurity in VPS Servers
ModSecurity is provided with all Hepsia-based VPS servers we offer and it shall be activated automatically for every new domain or subdomain which you add on the machine. In this way, any web app that you install shall be protected from the very beginning without doing anything by hand on your end. The firewall can be handled from the section of the CP which has the same name. This is the area in whichyou could turn off ModSecurity or enable its passive mode, so it will not take any action toward threats, but shall still keep a thorough log. The recorded data is available within the same section as well and you shall be able to see what IPs any attacks came from to enable you to stop them, what the nature of the attempted attacks was and based on what security rules ModSecurity responded. The rules which we use on our servers are a mix between commercial ones that we get from a security firm and custom ones that are included by our admins to maximize the protection of any web apps hosted on our end.
ModSecurity in Dedicated Servers
When you choose to host your websites on a dedicated server with the Hepsia CP, your web programs will be protected right from the start because ModSecurity is available with all Hepsia-based plans. You shall be able to regulate the firewall easily and if necessary, you shall be able to turn it off or switch on its passive mode when it will only maintain a log of what is occurring without taking any action to prevent possible attacks. The logs that you can find within the very same section of the Control Panel are very detailed and feature information about the attacker IP address, what site and file were attacked and in what way, what rule the firewall employed to stop the intrusion, etc. This info shall enable you to take measures and improve the protection of your websites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our administrators add when they identify attacks that have not yet been included inside the commercial pack.