ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It's employed to prevent attacks against script-driven websites through the use of security rules that contain specific expressions. In this way, the firewall can block hacking and spamming attempts and shield even sites that are not updated regularly. For example, numerous failed login attempts to a script administrator area or attempts to execute a certain file with the purpose to get access to the script will trigger particular rules, so ModSecurity will block these activities the instant it discovers them. The firewall is extremely efficient as it screens the whole HTTP traffic to a site in real time without slowing it down, so it can stop an attack before any harm is done. It additionally maintains an exceptionally detailed log of all attack attempts that features more information than traditional Apache logs, so you can later analyze the data and take further measures to increase the security of your sites if necessary.
ModSecurity in Cloud Hosting
ModSecurity is provided with all cloud hosting servers, so if you opt to host your websites with our organization, they'll be resistant to an array of attacks. The firewall is enabled as standard for all domains and subdomains, so there will be nothing you shall have to do on your end. You'll be able to stop ModSecurity for any site if needed, or to activate a detection mode, so that all activity shall be recorded, but the firewall shall not take any real action. You shall be able to view comprehensive logs via your Hepsia CP including the IP where the attack originated from, what the attacker wished to do and how ModSecurity dealt with the threat. As we take the safety of our customers' websites very seriously, we employ a selection of commercial rules which we take from one of the top firms that maintain this kind of rules. Our admins also include custom rules to ensure that your sites will be resistant to as many threats as possible.
ModSecurity in Semi-dedicated Servers
Any web application you set up inside your new semi-dedicated server account shall be protected by ModSecurity since the firewall is provided with all our hosting solutions and is switched on by default for any domain and subdomain you include or create via your Hepsia hosting Control Panel. You will be able to manage ModSecurity through a dedicated area within Hepsia where not simply could you activate or deactivate it fully, but you could also activate a passive mode, so the firewall will not block anything, but it will still keep an archive of potential attacks. This takes only a mouse click and you'll be able to look at the logs regardless of if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was handled, etcetera. The firewall employs 2 groups of rules on our servers - a commercial one that we get from a third-party web security firm and a custom one which our admins update manually in order to respond to recently discovered threats as fast as possible.
ModSecurity in Dedicated Servers
When you choose to host your Internet sites on a dedicated server with the Hepsia Control Panel, your web applications will be secured straight away since ModSecurity is available with all Hepsia-based plans. You'll be able to manage the firewall without difficulty and if needed, you shall be able to turn it off or activate its passive mode when it will only maintain a log of what is occurring without taking any action to stop potential attacks. The logs that you can find inside the same section of the CP are very detailed and contain information about the attacker IP, what website and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, etc. This information shall allow you to take measures and boost the protection of your websites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our staff include when they identify attacks that haven't yet been included inside the commercial pack.