ModSecurity is an effective firewall for Apache web servers that's used to stop attacks towards web applications. It keeps track of the HTTP traffic to a specific website in real time and prevents any intrusion attempts the instant it detects them. The firewall uses a set of rules to accomplish that - for example, attempting to log in to a script administration area unsuccessfully many times triggers one rule, sending a request to execute a specific file which could result in gaining access to the site triggers a different rule, etcetera. ModSecurity is one of the best firewalls around and it'll preserve even scripts that are not updated frequently since it can prevent attackers from using known exploits and security holes. Very detailed data about every single intrusion attempt is recorded and the logs the firewall maintains are a lot more comprehensive than the standard logs provided by the Apache server, so you may later take a look at them and decide if you need to take more measures in order to boost the safety of your script-driven websites.
ModSecurity in Cloud Web Hosting
ModSecurity can be found with every cloud web hosting
solution that we provide and it is turned on by default for every domain or subdomain that you add through your Hepsia Control Panel. If it interferes with any of your applications or you'd like to disable it for some reason, you will be able to do this through the ModSecurity section of Hepsia with simply a click. You may also use a passive mode, so the firewall will detect potential attacks and keep a log, but will not take any action. You could view comprehensive logs in the exact same section, including the IP address where the attack originated from, what exactly the attacker attempted to do and at what time, what ModSecurity did, etc. For maximum security of our clients we use a group of commercial firewall rules combined with custom ones that are included by our system administrators.
ModSecurity in Semi-dedicated Hosting
Any web program that you install in your new semi-dedicated hosting
account shall be protected by ModSecurity as the firewall is provided with all our hosting packages and is turned on by default for any domain and subdomain you include or create via your Hepsia hosting CP. You shall be able to manage ModSecurity through a dedicated area within Hepsia where not simply could you activate or deactivate it fully, but you may also switch on a passive mode, so the firewall won't block anything, but it will still maintain an archive of potential attacks. This normally requires simply a click and you will be able to see the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was taken care of, and so forth. The firewall employs 2 groups of rules on our machines - a commercial one that we get from a third-party web security company and a custom one that our administrators update manually in order to respond to newly discovered threats at the earliest opportunity.
ModSecurity in VPS Web Hosting
ModSecurity comes with all Hepsia-based virtual private servers
we offer and it shall be turned on automatically for every new domain or subdomain you add on the server. In this way, any web app which you install will be protected right from the start without doing anything by hand on your end. The firewall could be handled via the section of the Control Panel that bears the same name. This is the area in whichyou could disable ModSecurity or activate its passive mode, so it shall not take any action toward threats, but will still maintain a detailed log. The recorded info is available inside the same area as well and you will be able to see what IPs any attacks originated from to enable you to block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity responded. The rules which we employ on our servers are a mixture between commercial ones that we get from a security firm and custom ones which are added by our staff to enhance the security of any web applications hosted on our end.
ModSecurity in Dedicated Servers Hosting
ModSecurity is included with all dedicated servers
that are set up with our Hepsia CP and you will not have to do anything specific on your end to employ it because it is enabled by default each time you include a new domain or subdomain on your web server. In the event that it interferes with any of your apps, you shall be able to stop it via the respective part of Hepsia, or you may leave it operating in passive mode, so it will detect attacks and shall still keep a log for them, but won't stop them. You can look at the logs later to learn what you can do to improve the security of your Internet sites as you will find info such as where an intrusion attempt originated from, what website was attacked and based upon what rule ModSecurity reacted, etc. The rules that we use are commercial, hence they're frequently updated by a security firm, but to be on the safe side, our admins also add custom rules occasionally in order to respond to any new threats they have discovered.