ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its functionality and in case it identifies an intrusion attempt, it blocks it. The firewall additionally keeps a more thorough log for the website visitors than any server does, so you will be able to keep an eye on what is happening with your sites a lot better than if you rely merely on standard logs. ModSecurity works with security rules based on which it helps prevent attacks. For instance, it recognizes whether anyone is trying to log in to the administrator area of a particular script multiple times or if a request is sent to execute a file with a particular command. In these circumstances these attempts trigger the corresponding rules and the firewall software blocks the attempts in real time, after that records detailed details about them within its logs. ModSecurity is amongst the very best software firewalls on the market and it can easily protect your web apps against many threats and vulnerabilities, especially if you don’t update them or their plugins frequently.
ModSecurity in Shared Web Hosting
ModSecurity is supplied with all shared web hosting
web servers, so when you choose to host your websites with our company, they shall be resistant to a wide array of attacks. The firewall is enabled as standard for all domains and subdomains, so there'll be nothing you'll have to do on your end. You will be able to stop ModSecurity for any website if required, or to switch on a detection mode, so that all activity shall be recorded, but the firewall will not take any real action. You'll be able to view detailed logs via your Hepsia Control Panel including the IP where the attack came from, what the attacker wanted to do and how ModSecurity dealt with the threat. Since we take the security of our clients' Internet sites very seriously, we employ a group of commercial rules which we take from one of the best companies which maintain this sort of rules. Our administrators also include custom rules to ensure that your websites shall be shielded from as many threats as possible.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting
plans that we offer come with ModSecurity and given that the firewall is enabled by default, any site you build under a domain or a subdomain will be protected right away. A separate section in the Hepsia CP which comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll allow you to start and stop the firewall for any Internet site or enable a detection mode. With the last mentioned, ModSecurity won't take any action, but it'll still identify possible attacks and will keep all data within a log as if it were fully active. The logs can be found within the very same section of the CP and they include specifics about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to recognize and stop it, etcetera. The security rules which we use on our servers are a mix of commercial ones from a security company and custom ones created by our system admins. Consequently, we offer greater security for your web applications as we can shield them from attacks before security corporations release updates for new threats.
ModSecurity in VPS Hosting
All virtual private servers
which are set up with the Hepsia CP come with ModSecurity. The firewall is installed and turned on by default for all domains which are hosted on the machine, so there won't be anything special that you'll need to do to protect your Internet sites. It will take you just a click to stop ModSecurity if needed or to switch on its passive mode so that it records what happens without taking any actions to stop intrusions. You'll be able to look at the logs produced in passive or active mode through the corresponding section of Hepsia and learn more about the form of the attack, where it came from, what rule the firewall employed to tackle it, etcetera. We use a combination of commercial and custom rules so as to make certain that ModSecurity will prevent as many risks as possible, thus improving the protection of your web programs as much as possible.
ModSecurity in Dedicated Web Hosting
All our dedicated servers
that are set up with the Hepsia hosting Control Panel come with ModSecurity, so any program which you upload or set up will be protected from the very beginning and you'll not have to stress about common attacks or vulnerabilities. An independent section in Hepsia will allow you to start or stop the firewall for any domain or subdomain, or turn on a detection mode so that it records information about intrusions, but does not take actions to stop them. What you shall discover in the logs shall enable you to to secure your Internet sites better - the IP address an attack originated from, what website was attacked and how, what ModSecurity rule was triggered, etc. With this data, you'll be able to see if a website needs an update, whether you should block IPs from accessing your web server, etc. In addition to the third-party commercial security rules for ModSecurity that we use, our administrators add custom ones too every time they discover a new threat that's not yet in the commercial bundle.