ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It is employed to stop attacks against script-driven Internet sites by using security rules which contain specific expressions. In this way, the firewall can block hacking and spamming attempts and protect even Internet sites that are not updated on a regular basis. As an example, numerous unsuccessful login attempts to a script admin area or attempts to execute a certain file with the purpose to get access to the script shall trigger certain rules, so ModSecurity will stop these activities the second it detects them. The firewall is extremely efficient since it monitors the entire HTTP traffic to an Internet site in real time without slowing it down, so it can stop an attack before any harm is done. It additionally keeps an exceptionally comprehensive log of all attack attempts that features more info than traditional Apache logs, so you can later examine the data and take extra measures to improve the security of your Internet sites if needed.
ModSecurity in Shared Hosting
ModSecurity is provided with all shared hosting web servers, so when you choose to host your Internet sites with our firm, they'll be protected against a wide range of attacks. The firewall is turned on as standard for all domains and subdomains, so there will be nothing you'll have to do on your end. You shall be able to stop ModSecurity for any Internet site if required, or to enable a detection mode, so that all activity will be recorded, but the firewall won't take any real action. You will be able to view comprehensive logs through your Hepsia CP including the IP address where the attack came from, what the attacker wanted to do and how ModSecurity addressed the threat. As we take the security of our customers' sites seriously, we use a collection of commercial rules that we get from one of the best firms that maintain this sort of rules. Our administrators also add custom rules to make sure that your sites will be shielded from as many threats as possible.
ModSecurity in Semi-dedicated Servers
We have integrated ModSecurity as a standard inside all semi-dedicated server plans, so your web applications shall be protected as soon as you install them under any domain or subdomain. The Hepsia Control Panel which is included with the semi-dedicated accounts will permit you to switch on or disable the firewall for any site with a click. You'll also have the ability to turn on a passive detection mode in which ModSecurity shall maintain a log of possible attacks without really stopping them. The detailed logs include the nature of the attack and what ModSecurity response that attack activated, where it came from, and so forth. The list of rules we employ is constantly updated as to match any new threats which may appear on the Internet and it consists of both commercial rules that we get from a security firm and custom-written ones which our administrators include in the event that they discover a threat that's not present within the commercial list yet.
ModSecurity in VPS Servers
All VPS servers that are set up with the Hepsia Control Panel feature ModSecurity. The firewall is set up and switched on by default for all domains that are hosted on the web server, so there won't be anything special which you shall have to do to protect your Internet sites. It'll take you only a click to stop ModSecurity if needed or to turn on its passive mode so that it records what goes on without taking any measures to stop intrusions. You will be able to look at the logs created in active or passive mode through the corresponding section of Hepsia and discover more about the form of the attack, where it originated from, what rule the firewall employed to handle it, etc. We employ a mixture of commercial and custom rules in order to ensure that ModSecurity shall block as many risks as possible, hence increasing the security of your web apps as much as possible.
ModSecurity in Dedicated Servers
ModSecurity comes with all dedicated servers which are integrated with our Hepsia CP and you'll not need to do anything specific on your end to employ it as it is activated by default whenever you add a new domain or subdomain on your hosting server. In case it interferes with any of your apps, you will be able to stop it through the respective area of Hepsia, or you could leave it operating in passive mode, so it shall detect attacks and shall still keep a log for them, but shall not stop them. You may look at the logs later to find out what you can do to boost the security of your sites as you shall find details such as where an intrusion attempt originated from, what Internet site was attacked and based upon what rule ModSecurity responded, etcetera. The rules we use are commercial, thus they're constantly updated by a security provider, but to be on the safe side, our staff also add custom rules occasionally in order to react to any new threats they have discovered.