ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It's employed to stop attacks toward script-driven websites through the use of security rules which contain specific expressions. That way, the firewall can prevent hacking and spamming attempts and preserve even Internet sites which aren't updated on a regular basis. For example, several unsuccessful login attempts to a script administrator area or attempts to execute a specific file with the intention to get access to the script shall trigger particular rules, so ModSecurity will block out these activities the instant it discovers them. The firewall is extremely efficient as it screens the whole HTTP traffic to an Internet site in real time without slowing it down, so it will be able to prevent an attack before any harm is done. It additionally keeps a very thorough log of all attack attempts which contains more info than traditional Apache logs, so you can later examine the data and take extra measures to improve the security of your websites if required.
ModSecurity in Cloud Web Hosting
ModSecurity can be found with every single cloud web hosting plan that we offer and it is activated by default for any domain or subdomain that you include through your Hepsia CP. If it interferes with any of your apps or you would like to disable it for some reason, you shall be able to achieve that through the ModSecurity section of Hepsia with merely a mouse click. You may also use a passive mode, so the firewall will discover potential attacks and keep a log, but will not take any action. You can view comprehensive logs in the exact same section, including the IP where the attack came from, what exactly the attacker attempted to do and at what time, what ModSecurity did, etc. For max security of our clients we use a collection of commercial firewall rules combined with custom ones that are added by our system administrators.
ModSecurity in Semi-dedicated Hosting
Any web application that you set up within your new semi-dedicated hosting account shall be protected by ModSecurity because the firewall is provided with all our hosting packages and is activated by default for any domain and subdomain you add or create using your Hepsia hosting Control Panel. You will be able to manage ModSecurity via a dedicated section inside Hepsia where not simply could you activate or deactivate it completely, but you may also enable a passive mode, so the firewall will not stop anything, but it shall still maintain an archive of possible attacks. This requires just a mouse click and you will be able to view the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was dealt with, etcetera. The firewall employs two sets of rules on our web servers - a commercial one that we get from a third-party web security company and a custom one that our admins update manually as to respond to recently discovered risks as quickly as possible.
ModSecurity in VPS Hosting
ModSecurity is pre-installed on all virtual private servers which are set up with the Hepsia hosting Control Panel, so your web apps shall be protected from the instant your server is in a position. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if required, you could deactivate it with a mouse click through the corresponding section of Hepsia. You may also set it to work in detection mode, so it will maintain a detailed log of any possible attacks without taking any action to prevent them. The logs can be found inside the exact same section and offer information about the nature of the attack, what IP address it originated from and what ModSecurity rule was activated to stop it. For maximum security, we employ not just commercial rules from a business working in the field of web security, but also custom ones our admins include manually in order to respond to new threats which are still not dealt with in the commercial rules.
ModSecurity in Dedicated Web Hosting
ModSecurity is available as standard with all dedicated servers that are set up with the Hepsia Control Panel and is set to “Active” automatically for any domain you host or subdomain you create on the hosting server. In the event that a web application doesn't operate correctly, you can either turn off the firewall or set it to operate in passive mode. The second means that ModSecurity will maintain a log of any possible attack that may happen, but will not take any action to prevent it. The logs created in passive or active mode shall offer you more details about the exact file which was attacked, the nature of the attack and the IP it originated from, and so on. This info will enable you to determine what steps you can take to increase the safety of your Internet sites, such as blocking IPs or performing script and plugin updates. The ModSecurity rules we use are updated often with a commercial pack from a third-party security company we work with, but from time to time our admins include their own rules as well in case they discover a new potential threat.