ModSecurity is an effective firewall for Apache web servers that is employed to prevent attacks against web applications. It keeps track of the HTTP traffic to a particular website in real time and prevents any intrusion attempts the moment it discovers them. The firewall relies on a set of rules to accomplish that - for example, attempting to log in to a script admin area without success several times activates one rule, sending a request to execute a certain file which may result in getting access to the site triggers a different rule, and so forth. ModSecurity is amongst the best firewalls available on the market and it will preserve even scripts that are not updated regularly since it can prevent attackers from using known exploits and security holes. Incredibly thorough information about each intrusion attempt is recorded and the logs the firewall keeps are far more specific than the standard logs generated by the Apache server, so you could later analyze them and decide whether you need to take extra measures in order to improve the safety of your script-driven Internet sites.
ModSecurity in Shared Hosting
ModSecurity comes by default with all shared hosting packages that we supply and it shall be turned on automatically for any domain or subdomain that you add/create within your Hepsia hosting Control Panel. The firewall has 3 different modes, so you'll be able to switch on and disable it with only a mouse click or set it to detection mode, so it will maintain a log of all attacks, but it will not do anything to stop them. The log for any of your Internet sites shall contain elaborate information including the nature of the attack, where it came from, what action was taken by ModSecurity, and so on. The firewall rules which we use are constantly updated and include both commercial ones we get from a third-party security company and custom ones which our system administrators add in case that they detect a new sort of attacks. That way, the sites which you host here will be way more secure without any action expected on your end.
ModSecurity in Semi-dedicated Servers
Any web app which you install in your new semi-dedicated server account shall be protected by ModSecurity since the firewall is included with all our hosting solutions and is activated by default for any domain and subdomain you add or create using your Hepsia hosting CP. You will be able to manage ModSecurity via a dedicated section in Hepsia where not simply could you activate or deactivate it fully, but you could also switch on a passive mode, so the firewall won't stop anything, but it shall still keep a record of possible attacks. This takes only a click and you'll be able to look at the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was handled, etcetera. The firewall uses two sets of rules on our web servers - a commercial one that we get from a third-party web security provider and a custom one which our admins update manually in order to respond to recently discovered risks immediately.
ModSecurity in VPS Servers
Security is essential to us, so we install ModSecurity on all VPS servers that are provided with the Hepsia CP as a standard. The firewall can be managed through a dedicated section inside Hepsia and is turned on automatically when you add a new domain or create a subdomain, so you'll not have to do anything by hand. You shall also be able to deactivate it or turn on the so-called detection mode, so it will maintain a log of potential attacks that you can later analyze, but shall not block them. The logs in both passive and active modes contain info regarding the kind of the attack and how it was eliminated, what IP it came from and other useful information that could help you to tighten the security of your sites by updating them or blocking IPs, for example. In addition to the commercial rules we get for ModSecurity from a third-party security firm, we also employ our own rules because occasionally we discover specific attacks that aren't yet present within the commercial package. This way, we can increase the protection of your Virtual private server instantly as opposed to waiting for a certified update.
ModSecurity in Dedicated Servers
All of our dedicated servers that are installed with the Hepsia hosting CP come with ModSecurity, so any app you upload or install shall be properly secured from the very beginning and you'll not have to concern yourself with common attacks or vulnerabilities. An individual section in Hepsia will enable you to start or stop the firewall for any domain or subdomain, or activate a detection mode so that it records information about intrusions, but doesn't take actions to prevent them. What you shall find in the logs can allow you to to secure your Internet sites better - the IP an attack originated from, what website was attacked as well as how, what ModSecurity rule was triggered, and so forth. With this info, you'll be able to see whether a website needs an update, if you should block IPs from accessing your web server, and so on. In addition to the third-party commercial security rules for ModSecurity we use, our admins add custom ones as well if they come across a new threat that's not yet in the commercial bundle.