ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It is used to stop attacks against script-driven websites through the use of security rules which contain particular expressions. That way, the firewall can prevent hacking and spamming attempts and shield even Internet sites that aren't updated often. As an example, a number of unsuccessful login attempts to a script administrator area or attempts to execute a certain file with the objective to get access to the script will trigger particular rules, so ModSecurity shall stop these activities the second it identifies them. The firewall is incredibly efficient since it monitors the entire HTTP traffic to a website in real time without slowing it down, so it can prevent an attack before any harm is done. It additionally keeps a very detailed log of all attack attempts which contains more information than conventional Apache logs, so you can later check out the data and take extra measures to improve the security of your sites if required.
ModSecurity in Cloud Website Hosting
We provide ModSecurity with all cloud website hosting plans, so your Internet apps will be resistant to harmful attacks. The firewall is activated as standard for all domains and subdomains, but in case you'd like, you shall be able to stop it using the respective part of your Hepsia CP. You'll be able to also activate a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you'll discover within Hepsia are extremely detailed and feature info about the nature of any attack, when it transpired and from what IP, the firewall rule which was triggered, and so forth. We employ a range of commercial rules that are constantly updated, but sometimes our administrators add custom rules as well in order to efficiently protect the Internet sites hosted on our servers.
ModSecurity in Semi-dedicated Servers
ModSecurity is a part of our semi-dedicated server solutions and if you choose to host your sites with our company, there shall not be anything special you will have to do since the firewall is turned on by default for all domains and subdomains which you include using your hosting CP. If necessary, you could disable ModSecurity for a given site or turn on the so-called detection mode in which case the firewall shall still work and record information, but will not do anything to stop possible attacks on your sites. Comprehensive logs shall be readily available within your CP and you will be able to see what type of attacks took place, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks came from, and so forth. We employ 2 types of rules on our servers - commercial ones from a business which operates in the field of web security, and customized ones that our administrators often include to respond to newly found threats on time.
ModSecurity in VPS Servers
All VPS servers which are set up with the Hepsia Control Panel feature ModSecurity. The firewall is installed and switched on by default for all domains which are hosted on the machine, so there won't be anything special that you'll need to do to protect your websites. It will take you just a mouse click to stop ModSecurity if necessary or to switch on its passive mode so that it records what goes on without taking any steps to prevent intrusions. You shall be able to view the logs produced in active or passive mode via the corresponding section of Hepsia and find out more about the type of the attack, where it originated from, what rule the firewall used to handle it, and so forth. We use a mixture of commercial and custom rules in order to ensure that ModSecurity will block out as many risks as possible, therefore improving the security of your web applications as much as possible.
ModSecurity in Dedicated Servers
ModSecurity is provided with all dedicated servers which are integrated with our Hepsia Control Panel and you won't have to do anything specific on your end to employ it since it's activated by default whenever you include a new domain or subdomain on your hosting server. If it disrupts any of your programs, you shall be able to stop it through the respective part of Hepsia, or you could leave it in passive mode, so it shall identify attacks and will still keep a log for them, but won't stop them. You could analyze the logs later to find out what you can do to improve the protection of your Internet sites as you shall find info such as where an intrusion attempt originated from, what site was attacked and in accordance with what rule ModSecurity responded, and so forth. The rules that we use are commercial, therefore they're frequently updated by a security firm, but to be on the safe side, our administrators also add custom rules every now and then as to deal with any new threats they have identified.