ModSecurity is a highly effective firewall for Apache web servers that's used to prevent attacks towards web apps. It monitors the HTTP traffic to a specific site in real time and stops any intrusion attempts as soon as it detects them. The firewall relies on a set of rules to do this - as an illustration, trying to log in to a script admin area without success many times activates one rule, sending a request to execute a particular file which may result in getting access to the website triggers a different rule, etc. ModSecurity is one of the best firewalls on the market and it will secure even scripts that aren't updated often since it can prevent attackers from employing known exploits and security holes. Quite thorough info about each and every intrusion attempt is recorded and the logs the firewall maintains are much more comprehensive than the regular logs provided by the Apache server, so you could later examine them and decide if you need to take additional measures so as to enhance the protection of your script-driven sites.
ModSecurity in Cloud Hosting
We offer ModSecurity with all cloud hosting plans, so your web apps will be resistant to destructive attacks. The firewall is switched on by default for all domains and subdomains, but in case you'd like, you shall be able to stop it using the respective section of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you'll discover inside Hepsia are incredibly detailed and offer information about the nature of any attack, when it happened and from what IP, the firewall rule which was triggered, and so forth. We employ a range of commercial rules that are frequently updated, but sometimes our administrators include custom rules as well so as to better protect the sites hosted on our machines.
ModSecurity in Semi-dedicated Servers
ModSecurity is part of our semi-dedicated server packages and if you decide to host your websites with us, there shall not be anything special you'll have to do given that the firewall is turned on by default for all domains and subdomains that you include through your hosting CP. If necessary, you can disable ModSecurity for a certain Internet site or enable the so-called detection mode in which case the firewall will still operate and record information, but won't do anything to stop possible attacks against your sites. Detailed logs will be available inside your CP and you shall be able to see which kind of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks originated from, and so forth. We use two kinds of rules on our servers - commercial ones from a firm which operates in the field of web security, and customized ones which our administrators occasionally include to respond to newly discovered threats in a timely manner.
ModSecurity in VPS Servers
ModSecurity comes with all Hepsia-based VPS servers which we offer and it shall be activated automatically for any new domain or subdomain that you add on the machine. This way, any web application that you install shall be protected from the very beginning without doing anything by hand on your end. The firewall could be handled through the section of the Control Panel which bears the same name. This is the location in whichyou can turn off ModSecurity or enable its passive mode, so it shall not take any action against threats, but shall still maintain a thorough log. The recorded information is available within the same section as well and you shall be able to see what IPs any attacks came from to enable you to block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity responded. The rules that we use on our servers are a blend between commercial ones that we get from a security organization and custom ones which are included by our admins to maximize the protection of any web applications hosted on our end.
ModSecurity in Dedicated Servers
All of our dedicated servers that are set up with the Hepsia hosting CP come with ModSecurity, so any program you upload or install will be protected from the very beginning and you won't have to concern yourself with common attacks or vulnerabilities. An independent section in Hepsia will permit you to start or stop the firewall for any domain or subdomain, or turn on a detection mode so that it records information regarding intrusions, but doesn't take actions to prevent them. What you'll find in the logs can help you to secure your Internet sites better - the IP an attack originated from, what website was attacked and how, what ModSecurity rule was triggered, and so forth. With this data, you could see whether a site needs an update, if you should block IPs from accessing your hosting server, and so on. Aside from the third-party commercial security rules for ModSecurity we use, our administrators add custom ones as well if they discover a new threat that's not yet in the commercial bundle.