ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It is employed to stop attacks towards script-driven Internet sites by employing security rules which contain certain expressions. This way, the firewall can stop hacking and spamming attempts and protect even sites that are not updated frequently. For example, multiple unsuccessful login attempts to a script admin area or attempts to execute a certain file with the intention to get access to the script will trigger particular rules, so ModSecurity will block these activities the moment it identifies them. The firewall is quite efficient because it screens the whole HTTP traffic to a website in real time without slowing it down, so it can stop an attack before any harm is done. It also maintains an exceptionally comprehensive log of all attack attempts that features more info than conventional Apache logs, so you could later check out the data and take further measures to increase the security of your websites if necessary.
ModSecurity in Shared Hosting
ModSecurity comes standard with all shared hosting packages that we supply and it'll be turned on automatically for any domain or subdomain that you add/create inside your Hepsia hosting Control Panel. The firewall has 3 different modes, so you could activate and disable it with only a mouse click or set it to detection mode, so it'll maintain a log of all attacks, but it'll not do anything to prevent them. The log for each of your Internet sites will include in-depth information such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules we use are frequently updated and incorporate both commercial ones that we get from a third-party security business and custom ones which our system administrators add in case that they detect a new type of attacks. In this way, the Internet sites which you host here will be a lot more secure with no action expected on your end.
ModSecurity in Semi-dedicated Hosting
Any web application you set up within your new semi-dedicated hosting account shall be protected by ModSecurity because the firewall comes with all our hosting plans and is activated by default for any domain and subdomain that you include or create through your Hepsia hosting Control Panel. You will be able to manage ModSecurity via a dedicated section within Hepsia where not simply can you activate or deactivate it entirely, but you could also activate a passive mode, so the firewall will not stop anything, but it will still maintain an archive of possible attacks. This normally requires simply a click and you'll be able to view the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was handled, and so forth. The firewall uses 2 groups of rules on our web servers - a commercial one which we get from a third-party web security provider and a custom one that our admins update personally in order to respond to newly discovered threats as fast as possible.
ModSecurity in VPS
Safety is very important to us, so we install ModSecurity on all virtual private servers that are provided with the Hepsia CP as a standard. The firewall could be managed through a dedicated section inside Hepsia and is activated automatically when you include a new domain or generate a subdomain, so you'll not have to do anything manually. You'll also be able to deactivate it or switch on the so-called detection mode, so it will maintain a log of possible attacks you can later examine, but won't prevent them. The logs in both passive and active modes offer information about the kind of the attack and how it was stopped, what IP address it came from and other valuable data which could help you to tighten the security of your Internet sites by updating them or blocking IPs, as an example. On top of the commercial rules we get for ModSecurity from a third-party security enterprise, we also use our own rules as every now and then we detect specific attacks that are not yet present within the commercial pack. That way, we can enhance the protection of your VPS instantly as opposed to awaiting a certified update.
ModSecurity in Dedicated Hosting
All of our dedicated servers that are set up with the Hepsia hosting CP feature ModSecurity, so any program you upload or set up shall be protected from the very beginning and you will not need to worry about common attacks or vulnerabilities. A separate section in Hepsia will allow you to start or stop the firewall for any domain or subdomain, or switch on a detection mode so that it records information regarding intrusions, but doesn't take actions to stop them. What you will discover in the logs can help you to secure your Internet sites better - the IP an attack originated from, what website was attacked and how, what ModSecurity rule was triggered, etcetera. With this data, you could see whether a website needs an update, whether you ought to block IPs from accessing your server, and so on. Besides the third-party commercial security rules for ModSecurity which we use, our administrators include custom ones too when they come across a new threat that's not yet in the commercial bundle.