ModSecurity is an effective firewall for Apache web servers which is used to prevent attacks towards web apps. It tracks the HTTP traffic to a certain site in real time and stops any intrusion attempts as soon as it identifies them. The firewall uses a set of rules to do this - for example, attempting to log in to a script administration area unsuccessfully a few times triggers one rule, sending a request to execute a certain file that may result in accessing the website triggers a different rule, etcetera. ModSecurity is one of the best firewalls on the market and it will secure even scripts which aren't updated often since it can prevent attackers from employing known exploits and security holes. Incredibly detailed data about every intrusion attempt is recorded and the logs the firewall maintains are much more comprehensive than the regular logs provided by the Apache server, so you could later examine them and decide whether you need to take more measures in order to enhance the protection of your script-driven Internet sites.
ModSecurity in Hosting
ModSecurity is supplied with all hosting machines, so if you opt to host your Internet sites with our organization, they will be protected against an array of attacks. The firewall is enabled as standard for all domains and subdomains, so there'll be nothing you will have to do on your end. You shall be able to stop ModSecurity for any Internet site if needed, or to enable a detection mode, so that all activity shall be recorded, but the firewall shall not take any real action. You shall be able to view detailed logs from your Hepsia Control Panel including the IP where the attack originated from, what the attacker wanted to do and how ModSecurity dealt with the threat. Since we take the protection of our customers' websites seriously, we employ a collection of commercial rules which we get from one of the best firms that maintain such rules. Our admins also add custom rules to ensure that your sites will be resistant to as many threats as possible.
ModSecurity in Semi-dedicated Hosting
ModSecurity is a part of our semi-dedicated hosting packages and if you opt to host your sites with us, there will not be anything special you will have to do given that the firewall is activated by default for all domains and subdomains that you add via your hosting Control Panel. If necessary, you'll be able to disable ModSecurity for a given website or turn on the so-called detection mode in which case the firewall will still operate and record data, but shall not do anything to stop possible attacks on your sites. In depth logs shall be available in your CP and you shall be able to see what type of attacks occurred, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, etc. We use 2 kinds of rules on our servers - commercial ones from a company which operates in the field of web security, and custom made ones which our administrators occasionally add to respond to newly found threats on time.
ModSecurity in VPS
Security is extremely important to us, so we install ModSecurity on all virtual private servers that are provided with the Hepsia Control Panel as a standard. The firewall could be managed through a dedicated section within Hepsia and is turned on automatically when you include a new domain or create a subdomain, so you'll not need to do anything manually. You'll also be able to disable it or turn on the so-called detection mode, so it shall keep a log of possible attacks which you can later analyze, but will not prevent them. The logs in both passive and active modes include details about the form of the attack and how it was prevented, what IP it came from and other important information that could help you to tighten the security of your Internet sites by updating them or blocking IPs, for example. In addition to the commercial rules which we get for ModSecurity from a third-party security enterprise, we also employ our own rules since occasionally we discover specific attacks that are not yet present within the commercial pack. This way, we can easily improve the protection of your Virtual private server instantly rather than awaiting a certified update.
ModSecurity in Dedicated Hosting
All of our dedicated servers that are set up with the Hepsia hosting Control Panel come with ModSecurity, so any program you upload or set up will be secured from the very beginning and you'll not have to worry about common attacks or vulnerabilities. A separate section in Hepsia will allow you to start or stop the firewall for every domain or subdomain, or turn on a detection mode so that it records info about intrusions, but does not take actions to stop them. What you will find in the logs can allow you to to secure your Internet sites better - the IP an attack originated from, what site was attacked and how, what ModSecurity rule was triggered, and so forth. With this information, you'll be able to see if an Internet site needs an update, whether you need to block IPs from accessing your web server, etcetera. In addition to the third-party commercial security rules for ModSecurity that we use, our admins add custom ones too every time they come across a new threat which is not yet a part of the commercial bundle.