ModSecurity is an effective firewall for Apache web servers that is used to stop attacks towards web applications. It tracks the HTTP traffic to a specific Internet site in real time and stops any intrusion attempts the moment it identifies them. The firewall relies on a set of rules to do this - as an illustration, trying to log in to a script administrator area without success several times activates one rule, sending a request to execute a certain file which could result in accessing the Internet site triggers another rule, etcetera. ModSecurity is amongst the best firewalls available and it'll secure even scripts that aren't updated on a regular basis since it can prevent attackers from employing known exploits and security holes. Very detailed information about every single intrusion attempt is recorded and the logs the firewall keeps are much more comprehensive than the conventional logs created by the Apache server, so you could later take a look at them and decide whether you need to take additional measures so as to boost the safety of your script-driven websites.
ModSecurity in Cloud Website Hosting
ModSecurity is provided with all cloud website hosting web servers, so when you choose to host your Internet sites with our firm, they'll be shielded from a wide array of attacks. The firewall is enabled by default for all domains and subdomains, so there'll be nothing you'll have to do on your end. You will be able to stop ModSecurity for any website if needed, or to enable a detection mode, so all activity shall be recorded, but the firewall won't take any real action. You'll be able to view detailed logs from your Hepsia Control Panel including the IP where the attack originated from, what the attacker wanted to do and how ModSecurity handled the threat. As we take the safety of our customers' sites very seriously, we use a selection of commercial rules which we take from one of the top companies which maintain this kind of rules. Our admins also add custom rules to make sure that your Internet sites will be protected against as many risks as possible.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server plans that we offer feature ModSecurity and given that the firewall is enabled by default, any Internet site which you set up under a domain or a subdomain shall be secured straight away. An independent section in the Hepsia CP which comes with the semi-dedicated accounts is dedicated to ModSecurity and it will allow you to stop and start the firewall for any website or enable a detection mode. With the last option, ModSecurity will not take any action, but it shall still recognize possible attacks and shall keep all info within a log as if it were 100% active. The logs can be found in the very same section of the Control Panel and they feature information regarding the IP where an attack came from, what its nature was, what rule ModSecurity applies to recognize and stop it, etc. The security rules we use on our web servers are a mix of commercial ones from a security firm and custom ones made by our system administrators. As a result, we provide greater security for your web applications as we can shield them from attacks before security firms release updates for brand new threats.
ModSecurity in VPS Servers
All VPS servers that are set up with the Hepsia CP feature ModSecurity. The firewall is set up and switched on by default for all domains that are hosted on the server, so there will not be anything special that you'll need to do to protect your sites. It shall take you only a click to stop ModSecurity if needed or to turn on its passive mode so that it records what occurs without taking any steps to stop intrusions. You shall be able to see the logs created in passive or active mode via the corresponding section of Hepsia and find out more about the form of the attack, where it came from, what rule the firewall employed to take care of it, etcetera. We use a combination of commercial and custom rules in order to make certain that ModSecurity will block as many threats as possible, consequently enhancing the security of your web apps as much as possible.
ModSecurity in Dedicated Servers
If you choose to host your sites on a dedicated server with the Hepsia CP, your web programs will be protected right from the start since ModSecurity is provided with all Hepsia-based packages. You'll be able to manage the firewall with ease and if needed, you will be able to turn it off or switch on its passive mode when it'll only maintain a log of what is happening without taking any action to prevent potential attacks. The logs that you will find in the very same section of the CP are really detailed and contain information about the attacker IP address, what website and file were attacked and in what ways, what rule the firewall used to stop the intrusion, and so forth. This info will enable you to take measures and increase the protection of your sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our staff add when they identify attacks that haven't yet been included inside the commercial pack.