ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It is used to prevent attacks against script-driven Internet sites by employing security rules which contain certain expressions. That way, the firewall can prevent hacking and spamming attempts and protect even sites that are not updated often. As an example, numerous unsuccessful login attempts to a script administrator area or attempts to execute a specific file with the purpose to get access to the script will trigger particular rules, so ModSecurity will block out these activities the second it detects them. The firewall is extremely efficient as it screens the whole HTTP traffic to a site in real time without slowing it down, so it can prevent an attack before any harm is done. It furthermore maintains a very detailed log of all attack attempts that features more information than standard Apache logs, so you can later examine the data and take extra measures to enhance the security of your Internet sites if necessary.
ModSecurity in Hosting
ModSecurity comes standard with all hosting
packages which we supply and it will be switched on automatically for any domain or subdomain that you add/create inside your Hepsia hosting Control Panel. The firewall has 3 different modes, so you could activate and deactivate it with simply a mouse click or set it to detection mode, so it shall maintain a log of all attacks, but it shall not do anything to stop them. The log for any of your sites shall include elaborate info such as the nature of the attack, where it came from, what action was taken by ModSecurity, and so on. The firewall rules we use are frequently updated and consist of both commercial ones which we get from a third-party security business and custom ones which our system administrators include in case that they detect a new sort of attacks. That way, the websites which you host here shall be a lot more protected with no action required on your end.
ModSecurity in Semi-dedicated Servers
We've included ModSecurity as a standard in all semi-dedicated server
products, so your web applications shall be protected the instant you set them up under any domain or subdomain. The Hepsia CP which comes with the semi-dedicated accounts will allow you to activate or turn off the firewall for any site with a click. You shall also have the ability to turn on a passive detection mode with which ModSecurity will maintain a log of possible attacks without actually preventing them. The detailed logs include things like the nature of the attack and what ModSecurity response that attack initiated, where it came from, and so on. The list of rules that we employ is regularly updated as to match any new threats that might appear on the Internet and it includes both commercial rules that we get from a security company and custom-written ones which our admins add in the event that they find a threat that's not present within the commercial list yet.
ModSecurity in VPS Servers
ModSecurity is provided with all Hepsia-based VPS servers
which we offer and it shall be switched on automatically for any new domain or subdomain which you add on the web server. This way, any web app which you install shall be protected right away without doing anything personally on your end. The firewall could be managed via the section of the Control Panel which has the same name. This is the area whereyou'll be able to turn off ModSecurity or let its passive mode, so it won't take any action towards threats, but will still keep a thorough log. The recorded info is available inside the same area as well and you will be able to see what IPs any attacks came from so that you can block them, what the nature of the attempted attacks was and based on what security rules ModSecurity responded. The rules we use on our servers are a combination between commercial ones we obtain from a security organization and custom ones that are included by our admins to improve the security of any web applications hosted on our end.
ModSecurity in Dedicated Servers
If you choose to host your sites on a dedicated server
with the Hepsia CP, your web programs will be protected immediately because ModSecurity is supplied with all Hepsia-based packages. You'll be able to control the firewall effortlessly and if required, you'll be able to turn it off or activate its passive mode when it'll only maintain a log of what is happening without taking any action to stop potential attacks. The logs that you will find within the very same section of the Control Panel are incredibly detailed and feature information about the attacker IP, what website and file were attacked and in what ways, what rule the firewall employed to prevent the intrusion, and so on. This data will allow you to take measures and improve the security of your websites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our administrators add when they detect attacks which haven't yet been included in the commercial pack.