ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It's used to prevent attacks toward script-driven Internet sites by using security rules that contain particular expressions. In this way, the firewall can prevent hacking and spamming attempts and preserve even websites that aren't updated regularly. For instance, a number of unsuccessful login attempts to a script admin area or attempts to execute a certain file with the objective to get access to the script will trigger specific rules, so ModSecurity shall block out these activities the instant it identifies them. The firewall is very efficient because it screens the whole HTTP traffic to a site in real time without slowing it down, so it can stop an attack before any damage is done. It additionally maintains an incredibly thorough log of all attack attempts which features more info than typical Apache logs, so you can later check out the data and take extra measures to boost the security of your websites if required.
ModSecurity in Shared Web Hosting
ModSecurity can be found with every single shared web hosting solution that we offer and it is turned on by default for every domain or subdomain which you include through your Hepsia CP. In case it interferes with any of your applications or you would like to disable it for some reason, you will be able to do this through the ModSecurity area of Hepsia with merely a click. You could also use a passive mode, so the firewall will recognize potential attacks and keep a log, but will not take any action. You can view extensive logs in the exact same section, including the IP where the attack came from, exactly what the attacker attempted to do and at what time, what ModSecurity did, and so forth. For maximum security of our customers we use a collection of commercial firewall rules mixed with custom ones that are included by our system admins.
ModSecurity in Semi-dedicated Hosting
Any web app which you set up inside your new semi-dedicated hosting account shall be protected by ModSecurity because the firewall comes with all our hosting plans and is turned on by default for any domain and subdomain that you add or create through your Hepsia hosting Control Panel. You shall be able to manage ModSecurity through a dedicated area inside Hepsia where not only can you activate or deactivate it completely, but you could also enable a passive mode, so the firewall shall not block anything, but it'll still maintain an archive of potential attacks. This normally requires simply a click and you'll be able to look at the logs regardless of if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was dealt with, and so forth. The firewall employs two sets of rules on our web servers - a commercial one that we get from a third-party web security firm and a custom one which our administrators update manually in order to respond to recently discovered risks as soon as possible.
ModSecurity in VPS Web Hosting
ModSecurity comes with all Hepsia-based virtual private servers which we offer and it will be turned on automatically for every new domain or subdomain which you add on the web server. That way, any web app you install will be protected right away without doing anything manually on your end. The firewall can be handled via the section of the Control Panel which has the same name. This is the location in whichyou'll be able to disable ModSecurity or activate its passive mode, so it will not take any action towards threats, but shall still keep a thorough log. The recorded data is available inside the same area as well and you shall be able to see what IPs any attacks came from so that you stop them, what the nature of the attempted attacks was and based upon what security rules ModSecurity responded. The rules that we employ on our servers are a blend between commercial ones that we obtain from a security firm and custom ones which are added by our staff to maximize the security of any web applications hosted on our end.
ModSecurity in Dedicated Servers Hosting
All our dedicated servers that are installed with the Hepsia hosting Control Panel include ModSecurity, so any app that you upload or set up will be properly secured from the very beginning and you'll not have to concern yourself with common attacks or vulnerabilities. A separate section in Hepsia will allow you to start or stop the firewall for any domain or subdomain, or activate a detection mode so that it records information about intrusions, but doesn't take actions to prevent them. What you'll find in the logs can enable you to to secure your Internet sites better - the IP address an attack came from, what website was attacked as well as how, what ModSecurity rule was triggered, etc. With this info, you can see if a website needs an update, whether you ought to block IPs from accessing your hosting server, and so on. In addition to the third-party commercial security rules for ModSecurity that we use, our administrators add custom ones as well whenever they discover a new threat that's not yet included in the commercial bundle.