ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It is used to stop attacks towards script-driven sites by employing security rules which contain particular expressions. That way, the firewall can stop hacking and spamming attempts and shield even sites which aren't updated frequently. For example, numerous unsuccessful login attempts to a script admin area or attempts to execute a specific file with the intention to get access to the script shall trigger certain rules, so ModSecurity shall block these activities the second it discovers them. The firewall is extremely efficient because it screens the whole HTTP traffic to a website in real time without slowing it down, so it could stop an attack before any harm is done. It also keeps a very thorough log of all attack attempts that contains more information than traditional Apache logs, so you could later check out the data and take extra measures to increase the security of your Internet sites if necessary.
ModSecurity in Shared Website Hosting
ModSecurity is available on all shared website hosting machines, so when you choose to host your Internet sites with our organization, they shall be protected against a wide range of attacks. The firewall is turned on as standard for all domains and subdomains, so there will be nothing you'll have to do on your end. You shall be able to stop ModSecurity for any site if needed, or to switch on a detection mode, so all activity shall be recorded, but the firewall won't take any real action. You shall be able to view detailed logs from your Hepsia Control Panel including the IP address where the attack came from, what the attacker wanted to do and how ModSecurity handled the threat. Since we take the security of our customers' websites very seriously, we use a selection of commercial rules which we take from one of the best firms that maintain this sort of rules. Our admins also add custom rules to make sure that your websites shall be resistant to as many risks as possible.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server packages which we offer feature ModSecurity and given that the firewall is switched on by default, any site that you create under a domain or a subdomain will be secured right from the start. A separate section within the Hepsia Control Panel that comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll permit you to stop and start the firewall for any Internet site or switch on a detection mode. With the latter, ModSecurity shall not take any action, but it'll still detect possible attacks and shall keep all info within a log as if it were fully active. The logs can be found within the exact same section of the Control Panel and they include information regarding the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, and so on. The security rules that we employ on our servers are a mix of commercial ones from a security company and custom ones created by our system administrators. As a result, we provide higher security for your web apps as we can protect them from attacks even before security firms release updates for completely new threats.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers that are set up with the Hepsia hosting Control Panel, so your web applications will be protected from the moment your server is in a position. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if necessary, you'll be able to deactivate it with a click from the corresponding section of Hepsia. You may also set it to function in detection mode, so it'll keep a detailed log of any potential attacks without taking any action to prevent them. The logs are available within the very same section and offer info about the nature of the attack, what IP address it originated from and what ModSecurity rule was initiated to stop it. For optimum security, we use not only commercial rules from a company operating in the field of web security, but also custom ones which our admins add manually so as to react to new threats which are still not addressed in the commercial rules.
ModSecurity in Dedicated Servers
All our dedicated servers that are set up with the Hepsia hosting Control Panel include ModSecurity, so any program you upload or install will be properly secured from the very beginning and you'll not need to stress about common attacks or vulnerabilities. An independent section inside Hepsia will permit you to start or stop the firewall for each and every domain or subdomain, or turn on a detection mode so that it records information about intrusions, but doesn't take actions to prevent them. What you shall see in the logs can enable you to to secure your sites better - the IP address an attack originated from, what website was attacked as well as how, what ModSecurity rule was triggered, etcetera. With this info, you'll be able to see if an Internet site needs an update, whether you should block IPs from accessing your hosting server, etcetera. Besides the third-party commercial security rules for ModSecurity that we use, our administrators add custom ones too whenever they find a new threat that's not yet a part of the commercial bundle.