ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its overall performance and in case it discovers an intrusion attempt, it prevents it. The firewall furthermore keeps a more detailed log for the website visitors than any web server does, so you will be able to monitor what's going on with your websites better than if you rely simply on conventional logs. ModSecurity uses security rules based on which it prevents attacks. For instance, it identifies if somebody is attempting to log in to the administration area of a given script a number of times or if a request is sent to execute a file with a specific command. In these circumstances these attempts trigger the corresponding rules and the firewall hinders the attempts instantly, then records in-depth information about them within its logs. ModSecurity is amongst the very best software firewalls on the market and it can protect your web applications against many threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.
ModSecurity in Web Hosting
ModSecurity is offered with every single web hosting solution that we offer and it's activated by default for any domain or subdomain which you include via your Hepsia CP. In case it disrupts any of your programs or you would like to disable it for whatever reason, you shall be able to accomplish that through the ModSecurity area of Hepsia with simply a click. You may also enable a passive mode, so the firewall will detect potential attacks and keep a log, but won't take any action. You could view extensive logs in the exact same section, including the IP where the attack originated from, exactly what the attacker tried to do and at what time, what ModSecurity did, and so forth. For max protection of our customers we use a set of commercial firewall rules combined with custom ones that are provided by our system administrators.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting plans which we offer feature ModSecurity and since the firewall is enabled by default, any site you set up under a domain or a subdomain shall be protected straight away. A separate section in the Hepsia CP which comes with the semi-dedicated accounts is devoted to ModSecurity and it will permit you to start and stop the firewall for any Internet site or activate a detection mode. With the last option, ModSecurity shall not take any action, but it shall still identify possible attacks and will keep all data inside a log as if it were 100% active. The logs can be found inside the very same section of the CP and they include info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, etc. The security rules which we employ on our web servers are a mix of commercial ones from a security company and custom ones developed by our system admins. As a result, we offer increased security for your web programs as we can shield them from attacks even before security firms release updates for new threats.
ModSecurity in Dedicated Servers Hosting
ModSecurity is provided with all dedicated servers that are set up with our Hepsia Control Panel and you won't have to do anything specific on your end to employ it since it's turned on by default whenever you include a new domain or subdomain on your server. In the event that it interferes with any of your apps, you'll be able to stop it via the respective area of Hepsia, or you can leave it working in passive mode, so it shall detect attacks and shall still keep a log for them, but will not prevent them. You may analyze the logs later to find out what you can do to improve the security of your sites since you will find details such as where an intrusion attempt originated from, what site was attacked and based on what rule ModSecurity reacted, etc. The rules which we employ are commercial, therefore they're frequently updated by a security firm, but to be on the safe side, our admins also include custom rules occasionally as to deal with any new threats they have found.