ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its operation and in case it detects an intrusion attempt, it prevents it. The firewall also keeps a more comprehensive log for the website visitors than any web server does, so you shall be able to monitor what's going on with your websites better than if you rely merely on standard logs. ModSecurity works with security rules based on which it stops attacks. For example, it detects whether somebody is trying to log in to the admin area of a certain script a number of times or if a request is sent to execute a file with a particular command. In these circumstances these attempts trigger the corresponding rules and the firewall blocks the attempts in real time, and then records in-depth details about them in its logs. ModSecurity is amongst the best software firewalls out there and it can easily protect your web applications against many threats and vulnerabilities, especially if you don’t update them or their plugins often.
ModSecurity in Website Hosting
ModSecurity is provided with all website hosting machines, so when you decide to host your websites with our organization, they shall be shielded from a wide range of attacks. The firewall is enabled by default for all domains and subdomains, so there shall be nothing you'll need to do on your end. You will be able to stop ModSecurity for any site if needed, or to enable a detection mode, so that all activity shall be recorded, but the firewall shall not take any real action. You will be able to view comprehensive logs using your Hepsia Control Panel including the IP address where the attack originated from, what the attacker wanted to do and how ModSecurity handled the threat. Since we take the safety of our customers' sites very seriously, we use a group of commercial rules that we get from one of the top companies that maintain this sort of rules. Our admins also include custom rules to ensure that your sites will be protected against as many risks as possible.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server packages which we offer include ModSecurity and since the firewall is enabled by default, any website you create under a domain or a subdomain shall be secured straight away. An individual section in the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it shall permit you to stop and start the firewall for any website or activate a detection mode. With the last mentioned, ModSecurity will not take any action, but it shall still recognize possible attacks and shall keep all data within a log as if it were fully active. The logs can be found in the same section of the CP and they include information about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to recognize and stop it, and so on. The security rules that we employ on our web servers are a mix of commercial ones from a security company and custom ones developed by our system admins. Therefore, we provide higher security for your web applications as we can protect them from attacks before security firms release updates for new threats.
ModSecurity in VPS Servers
All VPS servers which are set up with the Hepsia CP feature ModSecurity. The firewall is set up and activated by default for all domains which are hosted on the server, so there won't be anything special that you will have to do to protect your Internet sites. It'll take you simply a mouse click to stop ModSecurity if required or to switch on its passive mode so that it records what happens without taking any measures to prevent intrusions. You shall be able to see the logs produced in active or passive mode through the corresponding section of Hepsia and find out more about the form of the attack, where it came from, what rule the firewall employed to take care of it, and so forth. We employ a mixture of commercial and custom rules in order to ensure that ModSecurity will block as many threats as possible, consequently improving the protection of your web programs as much as possible.
ModSecurity in Dedicated Servers
When you opt to host your websites on a dedicated server with the Hepsia Control Panel, your web programs will be secured straight away because ModSecurity is supplied with all Hepsia-based solutions. You shall be able to regulate the firewall without difficulty and if necessary, you shall be able to turn it off or activate its passive mode when it will only maintain a log of what's taking place without taking any action to stop possible attacks. The logs that you will find in the same section of the CP are quite detailed and include details about the attacker IP, what website and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, and so on. This info shall permit you to take measures and boost the protection of your websites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our administrators add every time they identify attacks that haven't yet been included within the commercial pack.