ModSecurity is an efficient firewall for Apache web servers that's employed to prevent attacks against web applications. It tracks the HTTP traffic to a given Internet site in real time and blocks any intrusion attempts the moment it identifies them. The firewall uses a set of rules to accomplish that - as an example, trying to log in to a script admin area unsuccessfully a few times activates one rule, sending a request to execute a certain file that may result in gaining access to the site triggers another rule, etcetera. ModSecurity is one of the best firewalls out there and it'll secure even scripts which are not updated on a regular basis as it can prevent attackers from employing known exploits and security holes. Incredibly thorough data about every intrusion attempt is recorded and the logs the firewall maintains are far more detailed than the standard logs created by the Apache server, so you could later examine them and decide if you need to take additional measures so as to boost the security of your script-driven sites.
ModSecurity in Shared Hosting
ModSecurity is provided with all shared hosting machines, so if you choose to host your sites with our company, they'll be shielded from a wide range of attacks. The firewall is enabled as standard for all domains and subdomains, so there will be nothing you shall have to do on your end. You shall be able to stop ModSecurity for any Internet site if required, or to enable a detection mode, so all activity will be recorded, but the firewall shall not take any real action. You shall be able to view detailed logs via your Hepsia CP including the IP where the attack originated from, what the attacker planned to do and how ModSecurity addressed the threat. Since we take the security of our customers' Internet sites very seriously, we use a selection of commercial rules which we get from one of the best firms that maintain this kind of rules. Our administrators also include custom rules to ensure that your Internet sites will be shielded from as many risks as possible.
ModSecurity in Semi-dedicated Hosting
Any web application which you install inside your new semi-dedicated hosting account will be protected by ModSecurity since the firewall is included with all our hosting plans and is turned on by default for any domain and subdomain you add or create using your Hepsia hosting CP. You will be able to manage ModSecurity via a dedicated section in Hepsia where not simply could you activate or deactivate it entirely, but you can also switch on a passive mode, so the firewall won't stop anything, but it shall still maintain a record of possible attacks. This requires only a click and you'll be able to view the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was dealt with, etcetera. The firewall uses 2 sets of rules on our servers - a commercial one which we get from a third-party web security firm and a custom one that our admins update personally as to respond to newly discovered threats as fast as possible.
ModSecurity in VPS Hosting
All virtual private servers which are provided with the Hepsia CP include ModSecurity. The firewall is set up and activated by default for all domains which are hosted on the machine, so there shall not be anything special which you will have to do to protect your sites. It shall take you only a click to stop ModSecurity if necessary or to turn on its passive mode so that it records what goes on without taking any actions to stop intrusions. You shall be able to look at the logs created in active or passive mode via the corresponding section of Hepsia and find out more about the type of the attack, where it came from, what rule the firewall used to take care of it, and so on. We use a mixture of commercial and custom rules in order to ensure that ModSecurity shall block out as many risks as possible, hence improving the protection of your web apps as much as possible.
ModSecurity in Dedicated Web Hosting
ModSecurity comes with all dedicated servers which are integrated with our Hepsia Control Panel and you won't need to do anything specific on your end to employ it as it is enabled by default every time you include a new domain or subdomain on your server. In case it disrupts some of your programs, you will be able to stop it through the respective section of Hepsia, or you can leave it operating in passive mode, so it shall identify attacks and will still keep a log for them, but shall not block them. You could analyze the logs later to learn what you can do to enhance the security of your sites since you shall find information such as where an intrusion attempt came from, what Internet site was attacked and based upon what rule ModSecurity reacted, etc. The rules we employ are commercial, hence they're regularly updated by a security company, but to be on the safe side, our administrators also add custom rules every now and then in order to react to any new threats they have discovered.