ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its overall performance and in case it discovers an intrusion attempt, it blocks it. The firewall additionally keeps a more comprehensive log for the website visitors than any server does, so you will manage to monitor what's happening with your Internet sites better than if you rely merely on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it recognizes whether anyone is attempting to log in to the administrator area of a particular script multiple times or if a request is sent to execute a file with a specific command. In such situations these attempts trigger the corresponding rules and the firewall hinders the attempts instantly, and then records comprehensive information about them inside its logs. ModSecurity is amongst the most effective software firewalls out there and it can easily protect your web applications against a large number of threats and vulnerabilities, particularly in case you don’t update them or their plugins often.
ModSecurity in Cloud Hosting
ModSecurity comes by default with all cloud hosting plans which we provide and it'll be activated automatically for any domain or subdomain which you add/create in your Hepsia hosting CP. The firewall has three different modes, so you'll be able to switch on and deactivate it with just a mouse click or set it to detection mode, so it'll keep a log of all attacks, but it'll not do anything to stop them. The log for each of your websites will include detailed information including the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules that we use are frequently updated and comprise of both commercial ones that we get from a third-party security company and custom ones which our system admins include in the event that they detect a new sort of attacks. That way, the sites that you host here will be way more protected without any action expected on your end.
ModSecurity in Semi-dedicated Hosting
Any web application which you install in your new semi-dedicated hosting account shall be protected by ModSecurity because the firewall is provided with all our hosting packages and is switched on by default for any domain and subdomain which you add or create via your Hepsia hosting CP. You will be able to manage ModSecurity through a dedicated area in Hepsia where not simply can you activate or deactivate it entirely, but you may also switch on a passive mode, so the firewall will not stop anything, but it will still maintain a record of potential attacks. This normally requires simply a click and you'll be able to view the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was handled, etc. The firewall employs two sets of rules on our machines - a commercial one that we get from a third-party web security firm and a custom one that our admins update personally as to respond to newly discovered risks as fast as possible.
ModSecurity in VPS Web Hosting
All virtual private servers which are offered with the Hepsia Control Panel feature ModSecurity. The firewall is set up and switched on by default for all domains which are hosted on the machine, so there won't be anything special which you will have to do to protect your websites. It shall take you only a mouse click to stop ModSecurity if necessary or to switch on its passive mode so that it records what occurs without taking any measures to prevent intrusions. You will be able to view the logs created in active or passive mode from the corresponding section of Hepsia and find out more about the form of the attack, where it came from, what rule the firewall used to tackle it, etc. We use a mixture of commercial and custom rules so as to ensure that ModSecurity shall prevent as many risks as possible, thus improving the protection of your web apps as much as possible.
ModSecurity in Dedicated Servers Hosting
ModSecurity is provided as standard with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain which you host or subdomain which you create on the web server. In the event that a web application does not function adequately, you may either switch off the firewall or set it to work in passive mode. The latter means that ModSecurity shall keep a log of any potential attack that may take place, but won't take any action to stop it. The logs created in active or passive mode will offer you more details about the exact file which was attacked, the form of the attack and the IP address it originated from, and so forth. This information shall allow you to decide what actions you can take to boost the safety of your sites, for instance blocking IPs or performing script and plugin updates. The ModSecurity rules which we employ are updated frequently with a commercial pack from a third-party security company we work with, but sometimes our admins add their own rules as well in the event that they find a new potential threat.