ModSecurity is a highly effective firewall for Apache web servers that's employed to stop attacks toward web applications. It monitors the HTTP traffic to a certain site in real time and stops any intrusion attempts the instant it identifies them. The firewall relies on a set of rules to do that - as an illustration, trying to log in to a script administration area unsuccessfully many times activates one rule, sending a request to execute a certain file that may result in accessing the Internet site triggers a different rule, etc. ModSecurity is among the best firewalls on the market and it will protect even scripts which aren't updated regularly because it can prevent attackers from employing known exploits and security holes. Quite thorough information about each intrusion attempt is recorded and the logs the firewall keeps are much more specific than the regular logs created by the Apache server, so you may later examine them and decide if you need to take more measures in order to improve the security of your script-driven sites.
ModSecurity in Cloud Web Hosting
We offer ModSecurity with all cloud web hosting
solutions, so your web apps will be resistant to harmful attacks. The firewall is turned on by default for all domains and subdomains, but if you'd like, you'll be able to stop it using the respective area of your Hepsia CP. You could also activate a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs which you shall find within Hepsia are incredibly detailed and include information about the nature of any attack, when it transpired and from what IP address, the firewall rule that was triggered, and so forth. We employ a set of commercial rules that are frequently updated, but sometimes our administrators include custom rules as well in order to better protect the websites hosted on our servers.
ModSecurity in Semi-dedicated Servers
Any web program that you set up in your new semi-dedicated server
account will be protected by ModSecurity because the firewall is included with all our hosting solutions and is turned on by default for any domain and subdomain that you add or create via your Hepsia hosting CP. You shall be able to manage ModSecurity via a dedicated section within Hepsia where not only could you activate or deactivate it completely, but you can also enable a passive mode, so the firewall will not block anything, but it will still keep an archive of possible attacks. This normally requires simply a click and you'll be able to look at the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was addressed, etc. The firewall employs 2 sets of rules on our servers - a commercial one which we get from a third-party web security provider and a custom one which our admins update personally in order to respond to newly discovered risks at the earliest opportunity.
ModSecurity in VPS Servers
ModSecurity is included with all Hepsia-based VPS servers
which we offer and it shall be switched on automatically for any new domain or subdomain that you add on the machine. In this way, any web app which you install shall be secured right away without doing anything manually on your end. The firewall may be managed through the section of the CP that has the same name. This is the place whereyou can turn off ModSecurity or let its passive mode, so it won't take any action against threats, but will still maintain a detailed log. The recorded data is available in the same area as well and you will be able to see what IPs any attacks originated from so that you can stop them, what the nature of the attempted attacks was and based on what security rules ModSecurity reacted. The rules that we employ on our servers are a mix between commercial ones which we obtain from a security organization and custom ones which are added by our staff to optimize the security of any web apps hosted on our end.
ModSecurity in Dedicated Servers
ModSecurity is provided with all dedicated servers
which are set up with our Hepsia CP and you won't need to do anything specific on your end to use it since it is turned on by default whenever you include a new domain or subdomain on your web server. In case it disrupts any of your apps, you will be able to stop it via the respective section of Hepsia, or you may leave it working in passive mode, so it will detect attacks and shall still maintain a log for them, but shall not stop them. You'll be able to look at the logs later to find out what you can do to boost the security of your Internet sites as you'll find info such as where an intrusion attempt came from, what website was attacked and in accordance with what rule ModSecurity reacted, and so forth. The rules that we use are commercial, thus they are regularly updated by a security company, but to be on the safe side, our staff also add custom rules from time to time in order to react to any new threats they have identified.