ModSecurity is an effective firewall for Apache web servers which is used to prevent attacks toward web apps. It monitors the HTTP traffic to a particular Internet site in real time and blocks any intrusion attempts as soon as it identifies them. The firewall relies on a set of rules to do that - as an example, trying to log in to a script administration area without success a few times triggers one rule, sending a request to execute a certain file which may result in accessing the Internet site triggers another rule, and so on. ModSecurity is one of the best firewalls out there and it'll secure even scripts that aren't updated often since it can prevent attackers from using known exploits and security holes. Very detailed information about each and every intrusion attempt is recorded and the logs the firewall keeps are much more specific than the regular logs provided by the Apache server, so you may later take a look at them and decide if you need to take extra measures in order to boost the safety of your script-driven websites.
ModSecurity in Shared Web Hosting
ModSecurity comes standard with all shared web hosting
packages which we offer and it'll be turned on automatically for any domain or subdomain you add/create within your Hepsia hosting CP. The firewall has 3 different modes, so you can switch on and disable it with simply a click or set it to detection mode, so it shall maintain a log of all attacks, but it'll not do anything to stop them. The log for each of your websites will contain detailed info which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules which we use are regularly updated and comprise of both commercial ones that we get from a third-party security firm and custom ones which our system administrators add in case that they detect a new kind of attacks. In this way, the Internet sites you host here shall be way more protected with no action required on your end.
ModSecurity in Semi-dedicated Hosting
We've integrated ModSecurity by default in all semi-dedicated hosting
plans, so your web apps shall be protected the instant you install them under any domain or subdomain. The Hepsia CP that comes with the semi-dedicated accounts will permit you to activate or disable the firewall for any Internet site with a click. You will also be able to turn on a passive detection mode in which ModSecurity shall keep a log of possible attacks without actually stopping them. The detailed logs include things like the nature of the attack and what ModSecurity response this attack activated, where it originated from, and so on. The list of rules that we use is regularly updated as to match any new threats that could appear on the Internet and it features both commercial rules that we get from a security company and custom-written ones that our admins add in case they discover a threat that's not present in the commercial list yet.
ModSecurity in VPS Hosting
ModSecurity is pre-installed on all virtual private servers
which are set up with the Hepsia hosting CP, so your web programs shall be protected from the second your server is ready. The firewall is turned on by default for any domain or subdomain on the VPS, but if required, you can disable it with a mouse click through the corresponding section of Hepsia. You could also set it to operate in detection mode, so it shall maintain an extensive log of any potential attacks without taking any action to prevent them. The logs can be found in the exact same section and include details about the nature of the attack, what IP it came from and what ModSecurity rule was activated to stop it. For optimum security, we employ not only commercial rules from a business operating in the field of web security, but also custom ones that our administrators add personally in order to react to new risks which are still not dealt with in the commercial rules.
ModSecurity in Dedicated Web Hosting
ModSecurity is provided with all dedicated servers
which are integrated with our Hepsia Control Panel and you'll not have to do anything specific on your end to use it since it is turned on by default each time you add a new domain or subdomain on your hosting server. In the event that it disrupts any of your apps, you will be able to stop it through the respective section of Hepsia, or you could leave it in passive mode, so it shall recognize attacks and shall still keep a log for them, but will not block them. You could analyze the logs later to determine what you can do to increase the security of your Internet sites since you shall find details such as where an intrusion attempt came from, what site was attacked and in accordance with what rule ModSecurity reacted, etcetera. The rules we use are commercial, hence they are regularly updated by a security company, but to be on the safe side, our staff also include custom rules occasionally as to deal with any new threats they have found.