ModSecurity is a powerful firewall for Apache web servers that is employed to prevent attacks against web apps. It keeps track of the HTTP traffic to a given website in real time and stops any intrusion attempts the instant it detects them. The firewall relies on a set of rules to do that - for instance, trying to log in to a script administration area unsuccessfully a few times sets off one rule, sending a request to execute a particular file which could result in gaining access to the site triggers a different rule, etc. ModSecurity is one of the best firewalls around and it'll preserve even scripts which aren't updated frequently since it can prevent attackers from using known exploits and security holes. Very comprehensive data about each and every intrusion attempt is recorded and the logs the firewall maintains are a lot more detailed than the conventional logs generated by the Apache server, so you may later take a look at them and decide if you need to take more measures in order to increase the safety of your script-driven sites.
ModSecurity in Website Hosting
ModSecurity comes by default with all website hosting packages that we provide and it shall be turned on automatically for any domain or subdomain that you add/create within your Hepsia hosting CP. The firewall has three different modes, so you'll be able to switch on and deactivate it with only a mouse click or set it to detection mode, so it will maintain a log of all attacks, but it'll not do anything to stop them. The log for any of your sites will feature comprehensive information including the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules that we use are constantly updated and consist of both commercial ones that we get from a third-party security business and custom ones our system admins include in the event that they detect a new kind of attacks. This way, the sites which you host here shall be way more protected without any action needed on your end.
ModSecurity in Semi-dedicated Servers
Any web application which you install in your new semi-dedicated server account will be protected by ModSecurity since the firewall is provided with all our hosting packages and is activated by default for any domain and subdomain which you include or create via your Hepsia hosting Control Panel. You will be able to manage ModSecurity via a dedicated section within Hepsia where not only can you activate or deactivate it fully, but you could also activate a passive mode, so the firewall will not stop anything, but it will still keep an archive of possible attacks. This takes simply a click and you will be able to look at the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was addressed, and so on. The firewall uses two groups of rules on our servers - a commercial one that we get from a third-party web security firm and a custom one which our administrators update personally as to respond to newly discovered threats immediately.
ModSecurity in VPS Servers
Protection is vital to us, so we install ModSecurity on all VPS servers that are set up with the Hepsia Control Panel as a standard. The firewall can be managed through a dedicated section within Hepsia and is activated automatically when you add a new domain or generate a subdomain, so you will not have to do anything by hand. You will also be able to disable it or turn on the so-called detection mode, so it shall keep a log of potential attacks that you can later analyze, but won't block them. The logs in both passive and active modes offer details regarding the kind of the attack and how it was prevented, what IP address it originated from and other important info which might help you to tighten the security of your Internet sites by updating them or blocking IPs, for instance. In addition to the commercial rules we get for ModSecurity from a third-party security company, we also use our own rules because occasionally we detect specific attacks which are not yet present in the commercial pack. This way, we could boost the protection of your Virtual private server right away rather than awaiting a certified update.
ModSecurity in Dedicated Servers
All our dedicated servers that are set up with the Hepsia hosting Control Panel feature ModSecurity, so any program you upload or set up will be protected from the very beginning and you'll not have to worry about common attacks or vulnerabilities. An independent section in Hepsia will permit you to start or stop the firewall for each and every domain or subdomain, or turn on a detection mode so that it records details about intrusions, but doesn't take actions to prevent them. What you'll discover in the logs can easily allow you to to secure your sites better - the IP an attack came from, what site was attacked and in what way, what ModSecurity rule was triggered, etc. With this data, you can see whether a site needs an update, whether you should block IPs from accessing your web server, and so forth. On top of the third-party commercial security rules for ModSecurity that we use, our administrators include custom ones as well if they discover a new threat that is not yet in the commercial bundle.