ModSecurity is a powerful firewall for Apache web servers that is used to stop attacks against web apps. It tracks the HTTP traffic to a certain site in real time and prevents any intrusion attempts the instant it discovers them. The firewall uses a set of rules to do that - as an illustration, trying to log in to a script admin area without success a few times triggers one rule, sending a request to execute a particular file that may result in gaining access to the Internet site triggers another rule, and so on. ModSecurity is among the best firewalls available on the market and it will preserve even scripts that aren't updated on a regular basis since it can prevent attackers from using known exploits and security holes. Quite comprehensive info about every intrusion attempt is recorded and the logs the firewall keeps are a lot more detailed than the regular logs created by the Apache server, so you could later analyze them and decide if you need to take additional measures so as to boost the safety of your script-driven Internet sites.
ModSecurity in Shared Hosting
We offer ModSecurity with all shared hosting packages, so your Internet apps shall be protected against malicious attacks. The firewall is turned on as standard for all domains and subdomains, but if you'd like, you will be able to stop it via the respective section of your Hepsia Control Panel. You could also switch on a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs which you shall find in Hepsia are extremely detailed and include data about the nature of any attack, when it happened and from what IP address, the firewall rule that was triggered, etcetera. We employ a group of commercial rules which are constantly updated, but sometimes our administrators include custom rules as well so as to better protect the sites hosted on our servers.
ModSecurity in Semi-dedicated Hosting
Any web app which you install inside your new semi-dedicated hosting account shall be protected by ModSecurity since the firewall is included with all our hosting packages and is turned on by default for any domain and subdomain you include or create using your Hepsia hosting CP. You will be able to manage ModSecurity through a dedicated area inside Hepsia where not simply could you activate or deactivate it entirely, but you could also activate a passive mode, so the firewall shall not block anything, but it will still maintain a record of potential attacks. This requires only a mouse click and you shall be able to see the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was handled, etc. The firewall uses 2 sets of rules on our web servers - a commercial one that we get from a third-party web security provider and a custom one that our admins update manually in order to respond to newly discovered threats as quickly as possible.
ModSecurity in VPS Web Hosting
All virtual private servers which are offered with the Hepsia Control Panel come with ModSecurity. The firewall is installed and turned on by default for all domains that are hosted on the web server, so there won't be anything special that you will have to do to protect your websites. It will take you simply a mouse click to stop ModSecurity if required or to turn on its passive mode so that it records what happens without taking any measures to prevent intrusions. You'll be able to see the logs created in passive or active mode through the corresponding section of Hepsia and learn more about the form of the attack, where it came from, what rule the firewall employed to deal with it, etcetera. We use a mix of commercial and custom rules in order to ensure that ModSecurity shall block as many threats as possible, thus improving the protection of your web applications as much as possible.
ModSecurity in Dedicated Servers Hosting
ModSecurity is included with all dedicated servers which are integrated with our Hepsia CP and you'll not need to do anything specific on your end to employ it since it is activated by default every time you include a new domain or subdomain on your server. If it disrupts some of your programs, you shall be able to stop it via the respective area of Hepsia, or you could leave it operating in passive mode, so it will identify attacks and will still maintain a log for them, but will not block them. You'll be able to look at the logs later to determine what you can do to increase the security of your sites since you will find info such as where an intrusion attempt originated from, what site was attacked and based upon what rule ModSecurity reacted, and so on. The rules that we employ are commercial, hence they are frequently updated by a security provider, but to be on the safe side, our staff also include custom rules from time to time as to respond to any new threats they have discovered.