ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It's employed to prevent attacks towards script-driven sites through the use of security rules which contain specific expressions. This way, the firewall can stop hacking and spamming attempts and protect even Internet sites that aren't updated on a regular basis. For instance, a number of unsuccessful login attempts to a script administrator area or attempts to execute a particular file with the objective to get access to the script shall trigger certain rules, so ModSecurity will stop these activities the instant it discovers them. The firewall is incredibly efficient since it tracks the entire HTTP traffic to an Internet site in real time without slowing it down, so it could stop an attack before any damage is done. It also keeps a very thorough log of all attack attempts that includes more information than standard Apache logs, so you can later check out the data and take further measures to boost the security of your sites if needed.
ModSecurity in Cloud Web Hosting
We provide ModSecurity with all cloud web hosting plans, so your Internet applications will be protected against destructive attacks. The firewall is turned on as standard for all domains and subdomains, but in case you'd like, you shall be able to stop it using the respective part of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs which you shall discover inside Hepsia are very detailed and include data about the nature of any attack, when it transpired and from what IP, the firewall rule that was triggered, etc. We employ a range of commercial rules that are frequently updated, but sometimes our admins add custom rules as well in order to better protect the websites hosted on our servers.
ModSecurity in Semi-dedicated Hosting
We have incorporated ModSecurity by default within all semi-dedicated hosting packages, so your web applications shall be protected whenever you set them up under any domain or subdomain. The Hepsia Control Panel which is included with the semi-dedicated accounts shall allow you to enable or turn off the firewall for any site with a mouse click. You'll also be able to switch on a passive detection mode through which ModSecurity shall maintain a log of possible attacks without really preventing them. The thorough logs contain the nature of the attack and what ModSecurity response this attack activated, where it originated from, and so forth. The list of rules that we use is regularly updated as to match any new risks which might appear on the Internet and it includes both commercial rules that we get from a security business and custom-written ones that our admins add in the event that they find a threat that is not present within the commercial list yet.
ModSecurity in VPS Web Hosting
Security is very important to us, so we set up ModSecurity on all virtual private servers that are provided with the Hepsia CP as a standard. The firewall could be managed via a dedicated section in Hepsia and is switched on automatically when you include a new domain or create a subdomain, so you will not need to do anything manually. You will also be able to deactivate it or switch on the so-called detection mode, so it will keep a log of possible attacks you can later analyze, but will not prevent them. The logs in both passive and active modes contain info about the type of the attack and how it was stopped, what IP address it came from and other valuable data which might help you to tighten the security of your websites by updating them or blocking IPs, for instance. Beyond the commercial rules which we get for ModSecurity from a third-party security firm, we also use our own rules because from time to time we find specific attacks which are not yet present inside the commercial pack. This way, we can boost the security of your VPS immediately rather than awaiting a certified update.
ModSecurity in Dedicated Servers Hosting
All our dedicated servers which are set up with the Hepsia hosting CP feature ModSecurity, so any program you upload or install shall be properly secured from the very beginning and you'll not have to concern yourself with common attacks or vulnerabilities. An independent section in Hepsia will permit you to start or stop the firewall for each and every domain or subdomain, or turn on a detection mode so that it records details about intrusions, but does not take actions to stop them. What you will see in the logs shall enable you to to secure your websites better - the IP an attack originated from, what site was attacked as well as how, what ModSecurity rule was triggered, and so forth. With this info, you'll be able to see whether a website needs an update, whether you should block IPs from accessing your web server, and so on. In addition to the third-party commercial security rules for ModSecurity that we use, our admins include custom ones as well every time they come across a new threat that is not yet included in the commercial bundle.