ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It's used to prevent attacks towards script-driven websites by using security rules which contain particular expressions. In this way, the firewall can prevent hacking and spamming attempts and preserve even websites which aren't updated regularly. For instance, several unsuccessful login attempts to a script administrator area or attempts to execute a specific file with the objective to get access to the script shall trigger certain rules, so ModSecurity shall stop these activities the second it detects them. The firewall is quite efficient since it monitors the whole HTTP traffic to a site in real time without slowing it down, so it can easily stop an attack before any harm is done. It also keeps an incredibly comprehensive log of all attack attempts that features more info than traditional Apache logs, so you could later analyze the data and take extra measures to boost the security of your sites if needed.
ModSecurity in Cloud Hosting
We offer ModSecurity with all cloud hosting packages, so your web apps shall be shielded from harmful attacks. The firewall is turned on as standard for all domains and subdomains, but if you'd like, you'll be able to stop it through the respective section of your Hepsia CP. You'll be able to also switch on a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs that you'll find in Hepsia are very detailed and offer info about the nature of any attack, when it occurred and from what IP, the firewall rule which was triggered, and so on. We use a set of commercial rules which are often updated, but sometimes our administrators include custom rules as well in order to efficiently protect the websites hosted on our servers.
ModSecurity in Semi-dedicated Hosting
ModSecurity is part of our semi-dedicated hosting plans and if you choose to host your Internet sites with us, there shall not be anything special you'll need to do since the firewall is turned on by default for all domains and subdomains you include via your hosting CP. If required, you can disable ModSecurity for a particular website or switch on the so-called detection mode in which case the firewall will still function and record information, but will not do anything to stop potential attacks on your Internet sites. In depth logs will be readily available in your CP and you shall be able to see what sort of attacks happened, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks originated from, and so on. We employ two types of rules on our servers - commercial ones from a business which operates in the field of web security, and custom made ones which our administrators sometimes include to respond to newly identified threats in a timely manner.
ModSecurity in VPS Web Hosting
All virtual private servers that are offered with the Hepsia CP include ModSecurity. The firewall is set up and turned on by default for all domains which are hosted on the server, so there won't be anything special which you shall have to do to protect your Internet sites. It will take you a click to stop ModSecurity if necessary or to turn on its passive mode so that it records what goes on without taking any measures to stop intrusions. You'll be able to view the logs produced in active or passive mode via the corresponding section of Hepsia and learn more about the form of the attack, where it originated from, what rule the firewall employed to handle it, etc. We use a mix of commercial and custom rules in order to ensure that ModSecurity shall block as many threats as possible, hence increasing the protection of your web programs as much as possible.
ModSecurity in Dedicated Servers Hosting
ModSecurity is included with all dedicated servers that are set up with our Hepsia Control Panel and you won't need to do anything specific on your end to employ it because it's turned on by default every time you include a new domain or subdomain on your hosting server. In the event that it interferes with any of your applications, you shall be able to stop it via the respective part of Hepsia, or you could leave it working in passive mode, so it shall detect attacks and shall still keep a log for them, but won't prevent them. You may examine the logs later to determine what you can do to increase the security of your sites as you will find information such as where an intrusion attempt came from, what site was attacked and based upon what rule ModSecurity responded, etcetera. The rules which we use are commercial, therefore they're frequently updated by a security company, but to be on the safe side, our staff also include custom rules occasionally in order to respond to any new threats they have discovered.