ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It's employed to prevent attacks against script-driven websites by using security rules which contain particular expressions. That way, the firewall can stop hacking and spamming attempts and protect even websites which aren't updated regularly. For instance, a number of unsuccessful login attempts to a script admin area or attempts to execute a certain file with the objective to get access to the script shall trigger certain rules, so ModSecurity will block out these activities the moment it discovers them. The firewall is extremely efficient as it tracks the entire HTTP traffic to an Internet site in real time without slowing it down, so it will be able to stop an attack before any damage is done. It furthermore maintains an incredibly detailed log of all attack attempts which contains more info than typical Apache logs, so you can later analyze the data and take additional measures to improve the security of your sites if required.
ModSecurity in Web Hosting
ModSecurity can be found with each and every web hosting solution that we provide and it's switched on by default for any domain or subdomain that you add via your Hepsia Control Panel. In the event that it interferes with any of your applications or you'd like to disable it for whatever reason, you shall be able to achieve that through the ModSecurity area of Hepsia with merely a mouse click. You can also use a passive mode, so the firewall will identify potential attacks and maintain a log, but shall not take any action. You'll be able to see extensive logs in the exact same section, including the IP address where the attack came from, what exactly the attacker aimed to do and at what time, what ModSecurity did, etcetera. For optimum safety of our clients we use a set of commercial firewall rules combined with custom ones which are provided by our system admins.
ModSecurity in Semi-dedicated Hosting
We've incorporated ModSecurity as a standard within all semi-dedicated hosting packages, so your web apps shall be protected whenever you install them under any domain or subdomain. The Hepsia CP that comes with the semi-dedicated accounts shall permit you to enable or disable the firewall for any site with a mouse click. You'll also have the ability to activate a passive detection mode through which ModSecurity will keep a log of potential attacks without really preventing them. The detailed logs contain the nature of the attack and what ModSecurity response this attack initiated, where it originated from, and so on. The list of rules we employ is frequently updated in order to match any new risks that may appear on the Internet and it features both commercial rules that we get from a security firm and custom-written ones that our administrators add in case they find a threat that's not present inside the commercial list yet.
ModSecurity in VPS Hosting
ModSecurity is pre-installed on all virtual private servers that are offered with the Hepsia hosting Control Panel, so your web apps shall be secured from the instant your server is in a position. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if needed, you can deactivate it with a mouse click through the corresponding section of Hepsia. You may also set it to function in detection mode, so it will maintain an extensive log of any possible attacks without taking any action to stop them. The logs are available within the exact same section and provide details about the nature of the attack, what IP address it came from and what ModSecurity rule was initiated to stop it. For best security, we employ not only commercial rules from a company working in the field of web security, but also custom ones that our administrators include personally so as to react to new risks that are still not dealt with in the commercial rules.
ModSecurity in Dedicated Web Hosting
If you decide to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web apps shall be secured right away since ModSecurity is available with all Hepsia-based solutions. You shall be able to control the firewall without difficulty and if necessary, you will be able to turn it off or activate its passive mode when it shall only maintain a log of what is going on without taking any action to prevent potential attacks. The logs which you'll find within the same section of the Control Panel are very detailed and feature information about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, and so on. This info shall enable you to take measures and increase the security of your websites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our staff include when they detect attacks that have not yet been included in the commercial pack.