ModSecurity is a highly effective firewall for Apache web servers that is employed to stop attacks towards web apps. It monitors the HTTP traffic to a specific site in real time and blocks any intrusion attempts the instant it discovers them. The firewall relies on a set of rules to do that - for example, trying to log in to a script administration area unsuccessfully a few times activates one rule, sending a request to execute a specific file which could result in accessing the site triggers another rule, and so on. ModSecurity is amongst the best firewalls on the market and it'll secure even scripts which are not updated regularly since it can prevent attackers from using known exploits and security holes. Very comprehensive information about every single intrusion attempt is recorded and the logs the firewall maintains are a lot more detailed than the standard logs provided by the Apache server, so you may later examine them and decide whether you need to take extra measures so as to boost the security of your script-driven websites.
ModSecurity in Web Hosting
ModSecurity comes by default with all web hosting
solutions which we supply and it will be switched on automatically for any domain or subdomain that you add/create inside your Hepsia hosting CP. The firewall has three different modes, so you can activate and deactivate it with just a mouse click or set it to detection mode, so it'll keep a log of all attacks, but it'll not do anything to prevent them. The log for each of your sites will feature in-depth info such as the nature of the attack, where it came from, what action was taken by ModSecurity, and so on. The firewall rules that we use are frequently updated and incorporate both commercial ones which we get from a third-party security company and custom ones that our system admins add in case that they detect a new kind of attacks. In this way, the websites which you host here shall be much more secure without any action required on your end.
ModSecurity in Semi-dedicated Servers
Any web program which you set up inside your new semi-dedicated server
account will be protected by ModSecurity since the firewall is provided with all our hosting plans and is switched on by default for any domain and subdomain you add or create through your Hepsia hosting Control Panel. You will be able to manage ModSecurity through a dedicated section in Hepsia where not only could you activate or deactivate it completely, but you can also enable a passive mode, so the firewall will not stop anything, but it shall still keep an archive of potential attacks. This normally requires just a click and you shall be able to see the logs regardless of if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was taken care of, and so on. The firewall employs two sets of rules on our machines - a commercial one which we get from a third-party web security provider and a custom one which our administrators update manually as to respond to newly discovered risks as soon as possible.
ModSecurity in VPS Servers
ModSecurity is included with all Hepsia-based VPS servers
we offer and it shall be turned on automatically for any new domain or subdomain you add on the machine. That way, any web app which you install will be protected from the very beginning without doing anything by hand on your end. The firewall could be managed from the section of the CP that bears the same name. This is the area whereyou can turn off ModSecurity or enable its passive mode, so it shall not take any action towards threats, but will still maintain a detailed log. The recorded data is available inside the same area as well and you'll be able to see what IPs any attacks came from to enable you to stop them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity responded. The rules that we employ on our servers are a mix between commercial ones we get from a security company and custom ones which are included by our staff to optimize the protection of any web applications hosted on our end.
ModSecurity in Dedicated Servers
ModSecurity comes with all dedicated servers
that are integrated with our Hepsia CP and you'll not need to do anything specific on your end to use it as it's enabled by default every time you include a new domain or subdomain on your hosting server. In the event that it disrupts some of your programs, you shall be able to stop it through the respective area of Hepsia, or you could leave it in passive mode, so it will recognize attacks and shall still maintain a log for them, but will not block them. You can look at the logs later to determine what you can do to enhance the protection of your Internet sites as you'll find details such as where an intrusion attempt came from, what website was attacked and in accordance with what rule ModSecurity responded, and so on. The rules that we employ are commercial, therefore they are frequently updated by a security provider, but to be on the safe side, our administrators also include custom rules every now and then as to respond to any new threats they have discovered.