ModSecurity is a powerful firewall for Apache web servers which is employed to stop attacks against web applications. It monitors the HTTP traffic to a specific Internet site in real time and blocks any intrusion attempts the moment it discovers them. The firewall uses a set of rules to do that - for example, attempting to log in to a script administrator area without success many times triggers one rule, sending a request to execute a specific file that may result in gaining access to the Internet site triggers a different rule, and so forth. ModSecurity is among the best firewalls available on the market and it will preserve even scripts which are not updated often as it can prevent attackers from using known exploits and security holes. Incredibly thorough info about every single intrusion attempt is recorded and the logs the firewall maintains are far more specific than the regular logs provided by the Apache server, so you may later examine them and decide whether you need to take additional measures in order to boost the security of your script-driven websites.
ModSecurity in Website Hosting
ModSecurity comes by default with all website hosting plans that we provide and it will be switched on automatically for any domain or subdomain which you add/create within your Hepsia hosting CP. The firewall has 3 different modes, so you could switch on and disable it with a click or set it to detection mode, so it shall maintain a log of all attacks, but it will not do anything to prevent them. The log for each of your websites shall contain detailed info which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules we use are frequently updated and include both commercial ones which we get from a third-party security firm and custom ones which our system administrators add in the event that they detect a new type of attacks. This way, the sites which you host here will be a lot more protected with no action required on your end.
ModSecurity in Semi-dedicated Hosting
Any web application you install within your new semi-dedicated hosting account will be protected by ModSecurity as the firewall is included with all our hosting plans and is activated by default for any domain and subdomain that you include or create using your Hepsia hosting Control Panel. You shall be able to manage ModSecurity through a dedicated section inside Hepsia where not only could you activate or deactivate it entirely, but you may also activate a passive mode, so the firewall shall not stop anything, but it'll still keep an archive of possible attacks. This requires simply a mouse click and you shall be able to look at the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was taken care of, etc. The firewall employs 2 sets of rules on our servers - a commercial one that we get from a third-party web security firm and a custom one that our admins update manually as to respond to newly discovered threats immediately.
ModSecurity in VPS Web Hosting
ModSecurity is pre-installed on all virtual private servers that are set up with the Hepsia hosting CP, so your web applications shall be secured from the instant your server is ready. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if necessary, you can deactivate it with a click of your mouse through the corresponding section of Hepsia. You can also set it to operate in detection mode, so it'll keep an extensive log of any potential attacks without taking any action to stop them. The logs can be found within the same section and offer info about the nature of the attack, what IP it originated from and what ModSecurity rule was initiated to stop it. For best security, we employ not just commercial rules from a firm operating in the field of web security, but also custom ones that our admins include manually so as to respond to new risks that are still not tackled in the commercial rules.
ModSecurity in Dedicated Servers Hosting
All our dedicated servers which are installed with the Hepsia hosting Control Panel come with ModSecurity, so any application which you upload or install shall be secured from the very beginning and you won't need to bother about common attacks or vulnerabilities. An individual section inside Hepsia will permit you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records information about intrusions, but does not take actions to prevent them. What you shall find in the logs can help you to secure your websites better - the IP address an attack originated from, what site was attacked and how, what ModSecurity rule was triggered, etc. With this info, you can see whether a website needs an update, if you should block IPs from accessing your hosting server, etc. Besides the third-party commercial security rules for ModSecurity we use, our administrators add custom ones as well whenever they discover a new threat which is not yet in the commercial bundle.