ModSecurity is a powerful firewall for Apache web servers that's used to prevent attacks toward web applications. It tracks the HTTP traffic to a specific Internet site in real time and prevents any intrusion attempts the moment it discovers them. The firewall relies on a set of rules to do this - as an example, attempting to log in to a script administrator area without success several times triggers one rule, sending a request to execute a particular file which could result in accessing the Internet site triggers another rule, etc. ModSecurity is among the best firewalls out there and it will preserve even scripts which aren't updated frequently since it can prevent attackers from employing known exploits and security holes. Incredibly thorough information about every single intrusion attempt is recorded and the logs the firewall maintains are considerably more detailed than the standard logs generated by the Apache server, so you can later analyze them and determine whether you need to take additional measures so as to enhance the safety of your script-driven websites.
ModSecurity in Web Hosting
ModSecurity comes by default with all web hosting plans which we provide and it'll be turned on automatically for any domain or subdomain you add/create within your Hepsia hosting Control Panel. The firewall has 3 different modes, so you could activate and disable it with only a mouse click or set it to detection mode, so it'll keep a log of all attacks, but it'll not do anything to prevent them. The log for each of your websites will include comprehensive info including the nature of the attack, where it came from, what action was taken by ModSecurity, etcetera. The firewall rules which we use are frequently updated and include both commercial ones that we get from a third-party security firm and custom ones which our system admins add in the event that they detect a new sort of attacks. That way, the sites you host here will be much more secure with no action needed on your end.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server solutions which we offer come with ModSecurity and given that the firewall is turned on by default, any website that you build under a domain or a subdomain will be secured immediately. An independent section within the Hepsia Control Panel which comes with the semi-dedicated accounts is devoted to ModSecurity and it will permit you to stop and start the firewall for any Internet site or activate a detection mode. With the latter, ModSecurity will not take any action, but it'll still recognize possible attacks and shall keep all information in a log as if it were 100% active. The logs could be found within the exact same section of the CP and they feature information regarding the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, and so on. The security rules which we use on our web servers are a mix of commercial ones from a security company and custom ones made by our system administrators. As a result, we provide higher security for your web applications as we can defend them from attacks before security corporations release updates for completely new threats.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers which are offered with the Hepsia hosting CP, so your web programs will be protected from the instant your server is ready. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if needed, you could deactivate it with a mouse click through the corresponding section of Hepsia. You could also set it to work in detection mode, so it will keep a comprehensive log of any possible attacks without taking any action to prevent them. The logs are available inside the same section and provide info about the nature of the attack, what IP address it originated from and what ModSecurity rule was triggered to stop it. For best security, we employ not simply commercial rules from a business operating in the field of web security, but also custom ones our admins include personally in order to respond to new risks which are still not dealt with in the commercial rules.
ModSecurity in Dedicated Servers
All of our dedicated servers which are installed with the Hepsia hosting Control Panel come with ModSecurity, so any program which you upload or install shall be properly secured from the very beginning and you will not need to bother about common attacks or vulnerabilities. A separate section inside Hepsia will enable you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records info about intrusions, but does not take actions to stop them. What you will find in the logs shall enable you to to secure your Internet sites better - the IP address an attack came from, what site was attacked and how, what ModSecurity rule was triggered, and so forth. With this info, you could see if a website needs an update, if you need to block IPs from accessing your server, and so forth. In addition to the third-party commercial security rules for ModSecurity which we use, our administrators add custom ones as well when they come across a new threat that's not yet in the commercial bundle.