ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It's employed to prevent attacks against script-driven sites by using security rules which contain certain expressions. In this way, the firewall can block hacking and spamming attempts and protect even Internet sites that are not updated frequently. For instance, several unsuccessful login attempts to a script administrative area or attempts to execute a specific file with the intention to get access to the script will trigger specific rules, so ModSecurity shall stop these activities the moment it detects them. The firewall is very efficient as it tracks the entire HTTP traffic to a website in real time without slowing it down, so it will be able to prevent an attack before any damage is done. It additionally maintains a very thorough log of all attack attempts that features more information than traditional Apache logs, so you could later analyze the data and take further measures to improve the security of your Internet sites if needed.
ModSecurity in Hosting
ModSecurity is provided with all hosting machines, so when you opt to host your Internet sites with our company, they will be shielded from an array of attacks. The firewall is enabled by default for all domains and subdomains, so there'll be nothing you will need to do on your end. You shall be able to stop ModSecurity for any site if needed, or to activate a detection mode, so all activity shall be recorded, but the firewall shall not take any real action. You'll be able to view detailed logs via your Hepsia Control Panel including the IP address where the attack came from, what the attacker planned to do and how ModSecurity handled the threat. As we take the security of our clients' websites seriously, we employ a set of commercial rules that we take from one of the best firms that maintain such rules. Our administrators also include custom rules to ensure that your Internet sites will be protected against as many risks as possible.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting plans which we offer include ModSecurity and given that the firewall is switched on by default, any site that you create under a domain or a subdomain will be protected right away. An individual section inside the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll allow you to start and stop the firewall for any Internet site or switch on a detection mode. With the latter, ModSecurity will not take any action, but it'll still recognize possible attacks and shall keep all info inside a log as if it were fully active. The logs can be found inside the very same section of the CP and they include information regarding the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, and so forth. The security rules which we use on our web servers are a mix of commercial ones from a security firm and custom ones developed by our system admins. Consequently, we provide greater security for your web programs as we can shield them from attacks even before security firms release updates for completely new threats.
ModSecurity in VPS
Protection is of the utmost importance to us, so we install ModSecurity on all virtual private servers that are made available with the Hepsia Control Panel as a standard. The firewall could be managed through a dedicated section inside Hepsia and is switched on automatically when you include a new domain or create a subdomain, so you won't have to do anything by hand. You'll also be able to disable it or turn on the so-called detection mode, so it'll maintain a log of possible attacks that you can later study, but shall not prevent them. The logs in both passive and active modes offer info about the kind of the attack and how it was stopped, what IP address it came from and other valuable data which could help you to tighten the security of your websites by updating them or blocking IPs, for instance. In addition to the commercial rules that we get for ModSecurity from a third-party security enterprise, we also implement our own rules because once in a while we detect specific attacks that are not yet present within the commercial pack. That way, we could improve the security of your VPS promptly rather than waiting for a certified update.
ModSecurity in Dedicated Hosting
When you choose to host your sites on a dedicated server with the Hepsia CP, your web programs will be protected right away since ModSecurity is supplied with all Hepsia-based packages. You will be able to manage the firewall without difficulty and if required, you'll be able to turn it off or activate its passive mode when it'll only keep a log of what is taking place without taking any action to stop possible attacks. The logs which you will find in the very same section of the Control Panel are really detailed and contain data about the attacker IP, what website and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, etc. This information shall enable you to take measures and improve the protection of your sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our admins include every time they identify attacks which haven't yet been included in the commercial pack.