ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It is used to prevent attacks towards script-driven websites by using security rules that contain certain expressions. This way, the firewall can stop hacking and spamming attempts and preserve even Internet sites which are not updated on a regular basis. For instance, several failed login attempts to a script admin area or attempts to execute a certain file with the purpose to get access to the script will trigger particular rules, so ModSecurity will block out these activities the second it detects them. The firewall is very efficient since it monitors the entire HTTP traffic to an Internet site in real time without slowing it down, so it will be able to prevent an attack before any harm is done. It furthermore maintains an incredibly comprehensive log of all attack attempts which features more info than traditional Apache logs, so you can later check out the data and take extra measures to enhance the security of your Internet sites if required.
ModSecurity in Shared Hosting
We provide ModSecurity with all shared hosting plans, so your web applications shall be shielded from destructive attacks. The firewall is turned on as standard for all domains and subdomains, but in case you'd like, you'll be able to stop it through the respective section of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you shall find inside Hepsia are quite detailed and include data about the nature of any attack, when it happened and from what IP address, the firewall rule which was triggered, etc. We employ a set of commercial rules that are frequently updated, but sometimes our admins include custom rules as well so as to better protect the websites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
ModSecurity is part of our semi-dedicated hosting packages and if you opt to host your Internet sites with us, there shall not be anything special you will have to do given that the firewall is turned on by default for all domains and subdomains you add via your hosting Control Panel. If needed, you'll be able to disable ModSecurity for a certain website or turn on the so-called detection mode in which case the firewall will still function and record information, but will not do anything to stop potential attacks on your Internet sites. Comprehensive logs shall be accessible in your Control Panel and you shall be able to see what type of attacks happened, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks originated from, and so forth. We employ two types of rules on our servers - commercial ones from a business which operates in the field of web security, and custom ones that our administrators sometimes add to respond to newly identified threats promptly.
ModSecurity in VPS Web Hosting
Safety is of the utmost importance to us, so we install ModSecurity on all virtual private servers that are made available with the Hepsia CP by default. The firewall can be managed through a dedicated section inside Hepsia and is activated automatically when you add a new domain or generate a subdomain, so you will not need to do anything by hand. You will also be able to disable it or switch on the so-called detection mode, so it shall keep a log of potential attacks that you can later study, but will not stop them. The logs in both passive and active modes include info about the kind of the attack and how it was stopped, what IP address it came from and other valuable information that could help you to tighten the security of your sites by updating them or blocking IPs, for example. On top of the commercial rules we get for ModSecurity from a third-party security firm, we also implement our own rules since every now and then we find specific attacks that are not yet present inside the commercial pack. That way, we can easily boost the protection of your Virtual private server right away rather than awaiting an official update.
ModSecurity in Dedicated Servers Hosting
All our dedicated servers that are set up with the Hepsia hosting Control Panel include ModSecurity, so any app which you upload or set up shall be secured from the very beginning and you won't have to worry about common attacks or vulnerabilities. An individual section inside Hepsia will enable you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records details about intrusions, but does not take actions to prevent them. What you will see in the logs can easily help you to secure your sites better - the IP address an attack originated from, what site was attacked as well as how, what ModSecurity rule was triggered, etcetera. With this information, you can see whether an Internet site needs an update, whether you need to block IPs from accessing your web server, etcetera. Aside from the third-party commercial security rules for ModSecurity we use, our admins include custom ones as well if they find a new threat that is not yet included in the commercial bundle.