ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its functionality and in case it identifies an intrusion attempt, it prevents it. The firewall furthermore keeps a more detailed log for the traffic than any web server does, so you shall manage to monitor what's happening with your Internet sites better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it stops attacks. For instance, it identifies if anyone is trying to log in to the administration area of a given script multiple times or if a request is sent to execute a file with a particular command. In such circumstances these attempts trigger the corresponding rules and the firewall blocks the attempts instantly, then records detailed information about them inside its logs. ModSecurity is one of the most effective software firewalls out there and it could easily protect your web apps against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.
ModSecurity in Shared Website Hosting
We offer ModSecurity with all shared website hosting solutions, so your Internet applications shall be shielded from malicious attacks. The firewall is switched on by default for all domains and subdomains, but in case you would like, you shall be able to stop it through the respective section of your Hepsia CP. You could also activate a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs that you'll discover within Hepsia are very detailed and feature info about the nature of any attack, when it transpired and from what IP, the firewall rule that was triggered, etcetera. We employ a range of commercial rules which are constantly updated, but sometimes our admins add custom rules as well so as to better protect the Internet sites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
Any web application you install in your new semi-dedicated hosting account will be protected by ModSecurity as the firewall is provided with all our hosting plans and is turned on by default for any domain and subdomain that you include or create using your Hepsia hosting CP. You shall be able to manage ModSecurity via a dedicated section within Hepsia where not only could you activate or deactivate it completely, but you may also enable a passive mode, so the firewall won't stop anything, but it will still maintain a record of possible attacks. This normally requires simply a click and you shall be able to view the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was handled, and so forth. The firewall uses two groups of rules on our machines - a commercial one that we get from a third-party web security firm and a custom one that our administrators update manually as to respond to newly discovered risks as fast as possible.
ModSecurity in Dedicated Servers Hosting
ModSecurity comes with all dedicated servers which are integrated with our Hepsia Control Panel and you'll not have to do anything specific on your end to employ it as it's switched on by default each time you add a new domain or subdomain on your web server. If it interferes with some of your applications, you will be able to stop it via the respective section of Hepsia, or you could leave it working in passive mode, so it will detect attacks and shall still keep a log for them, but shall not prevent them. You can examine the logs later to learn what you can do to improve the protection of your sites since you will find details such as where an intrusion attempt originated from, what website was attacked and based on what rule ModSecurity reacted, and so forth. The rules we use are commercial, therefore they are regularly updated by a security company, but to be on the safe side, our staff also add custom rules from time to time as to respond to any new threats they have identified.