ModSecurity is a powerful firewall for Apache web servers that is used to stop attacks toward web apps. It monitors the HTTP traffic to a specific site in real time and prevents any intrusion attempts the moment it identifies them. The firewall uses a set of rules to do this - for instance, trying to log in to a script admin area without success a few times sets off one rule, sending a request to execute a specific file which may result in gaining access to the Internet site triggers a different rule, etcetera. ModSecurity is one of the best firewalls available on the market and it will preserve even scripts which aren't updated on a regular basis as it can prevent attackers from employing known exploits and security holes. Quite thorough information about every single intrusion attempt is recorded and the logs the firewall maintains are much more detailed than the regular logs generated by the Apache server, so you can later analyze them and decide if you need to take extra measures so as to boost the safety of your script-driven websites.
ModSecurity in Cloud Web Hosting
ModSecurity is offered with every single cloud web hosting plan which we provide and it is activated by default for every domain or subdomain that you add through your Hepsia Control Panel. In case it disrupts any of your apps or you'd like to disable it for some reason, you shall be able to accomplish that through the ModSecurity area of Hepsia with just a click. You could also use a passive mode, so the firewall will identify possible attacks and keep a log, but shall not take any action. You can view extensive logs in the same section, including the IP where the attack came from, what exactly the attacker aimed to do and at what time, what ModSecurity did, and so on. For maximum security of our clients we use a set of commercial firewall rules combined with custom ones which are added by our system admins.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server packages that we offer include ModSecurity and because the firewall is turned on by default, any Internet site that you set up under a domain or a subdomain shall be secured immediately. An independent section within the Hepsia Control Panel which comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll allow you to start and stop the firewall for any site or activate a detection mode. With the last option, ModSecurity shall not take any action, but it'll still detect possible attacks and will keep all info within a log as if it were fully active. The logs can be found in the very same section of the CP and they offer details about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, etc. The security rules which we employ on our servers are a mix between commercial ones from a security company and custom ones made by our system admins. As a result, we offer increased security for your web apps as we can protect them from attacks before security companies release updates for completely new threats.
ModSecurity in VPS Servers
ModSecurity comes with all Hepsia-based VPS servers we offer and it shall be switched on automatically for every new domain or subdomain that you add on the server. That way, any web application that you install shall be secured from the very beginning without doing anything by hand on your end. The firewall could be managed through the section of the Control Panel that has the same name. This is the place in whichyou could disable ModSecurity or activate its passive mode, so it won't take any action towards threats, but shall still keep a comprehensive log. The recorded info is available within the same area as well and you shall be able to see what IPs any attacks came from to enable you to block them, what the nature of the attempted attacks was and based on what security rules ModSecurity reacted. The rules which we employ on our servers are a mix between commercial ones which we obtain from a security firm and custom ones which are included by our staff to enhance the security of any web applications hosted on our end.
ModSecurity in Dedicated Servers
All our dedicated servers which are set up with the Hepsia hosting CP feature ModSecurity, so any program that you upload or install shall be protected from the very beginning and you will not need to concern yourself with common attacks or vulnerabilities. An individual section inside Hepsia will enable you to start or stop the firewall for any domain or subdomain, or switch on a detection mode so that it records information about intrusions, but does not take actions to stop them. What you shall discover in the logs can enable you to to secure your websites better - the IP an attack came from, what website was attacked as well as how, what ModSecurity rule was triggered, and so on. With this information, you could see if a website needs an update, if you ought to block IPs from accessing your server, and so forth. Besides the third-party commercial security rules for ModSecurity that we use, our administrators include custom ones as well every time they discover a new threat that is not yet in the commercial bundle.