ModSecurity is an effective firewall for Apache web servers that's employed to prevent attacks toward web applications. It keeps track of the HTTP traffic to a certain site in real time and prevents any intrusion attempts the moment it detects them. The firewall relies on a set of rules to do that - as an example, attempting to log in to a script administration area unsuccessfully a few times activates one rule, sending a request to execute a specific file that may result in getting access to the site triggers a different rule, and so on. ModSecurity is amongst the best firewalls around and it'll preserve even scripts which are not updated on a regular basis because it can prevent attackers from using known exploits and security holes. Quite thorough info about each intrusion attempt is recorded and the logs the firewall keeps are a lot more comprehensive than the standard logs generated by the Apache server, so you can later analyze them and decide if you need to take additional measures so as to boost the safety of your script-driven websites.
ModSecurity in Cloud Hosting
ModSecurity is supplied with all cloud hosting
servers, so when you opt to host your Internet sites with our company, they shall be shielded from a wide array of attacks. The firewall is turned on by default for all domains and subdomains, so there will be nothing you shall need to do on your end. You will be able to stop ModSecurity for any website if necessary, or to enable a detection mode, so all activity shall be recorded, but the firewall will not take any real action. You will be able to view detailed logs via your Hepsia Control Panel including the IP address where the attack came from, what the attacker wanted to do and how ModSecurity dealt with the threat. As we take the security of our customers' Internet sites seriously, we use a selection of commercial rules that we take from one of the top firms that maintain this type of rules. Our admins also include custom rules to make certain that your websites will be protected against as many threats as possible.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting
solutions which we offer feature ModSecurity and because the firewall is switched on by default, any Internet site you set up under a domain or a subdomain shall be protected straight away. An independent section in the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll enable you to stop and start the firewall for any website or activate a detection mode. With the last option, ModSecurity will not take any action, but it will still recognize possible attacks and will keep all info in a log as if it were completely active. The logs could be found within the same section of the CP and they include information about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, etc. The security rules which we use on our servers are a mix between commercial ones from a security firm and custom ones made by our system admins. As a result, we offer higher security for your web programs as we can defend them from attacks even before security businesses release updates for brand new threats.
ModSecurity in VPS Hosting
ModSecurity is pre-installed on all virtual private servers
that are offered with the Hepsia hosting Control Panel, so your web programs will be protected from the moment your server is in a position. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if required, you'll be able to disable it with a click through the corresponding section of Hepsia. You can also set it to function in detection mode, so it will keep a detailed log of any potential attacks without taking any action to prevent them. The logs can be found in the same section and provide info about the nature of the attack, what IP it came from and what ModSecurity rule was activated to stop it. For optimum security, we employ not only commercial rules from a business operating in the field of web security, but also custom ones that our admins add personally in order to react to new threats that are still not tackled in the commercial rules.
ModSecurity in Dedicated Web Hosting
ModSecurity is offered by default with all dedicated servers
which are set up with the Hepsia CP and is set to “Active” automatically for any domain you host or subdomain which you create on the web server. In case that a web application doesn't function adequately, you can either turn off the firewall or set it to work in passive mode. The latter means that ModSecurity will keep a log of any possible attack which might take place, but shall not take any action to stop it. The logs created in passive or active mode shall give you additional details about the exact file that was attacked, the form of the attack and the IP it originated from, etc. This info will enable you to decide what actions you can take to boost the safety of your sites, for instance blocking IPs or carrying out script and plugin updates. The ModSecurity rules that we use are updated constantly with a commercial package from a third-party security provider we work with, but occasionally our staff add their own rules too in case they come across a new potential threat.