ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It's used to prevent attacks toward script-driven sites by employing security rules which contain particular expressions. That way, the firewall can block hacking and spamming attempts and shield even sites which are not updated regularly. As an example, numerous unsuccessful login attempts to a script administrative area or attempts to execute a particular file with the intention to get access to the script will trigger particular rules, so ModSecurity shall block out these activities the instant it detects them. The firewall is quite efficient because it screens the entire HTTP traffic to a site in real time without slowing it down, so it will be able to prevent an attack before any harm is done. It furthermore maintains an exceptionally detailed log of all attack attempts which contains more information than typical Apache logs, so you could later check out the data and take extra measures to increase the security of your websites if necessary.
ModSecurity in Cloud Hosting
ModSecurity can be found with each and every cloud hosting plan which we provide and it is activated by default for every domain or subdomain which you include through your Hepsia Control Panel. If it interferes with any of your programs or you'd like to disable it for some reason, you will be able to accomplish that through the ModSecurity section of Hepsia with merely a mouse click. You could also use a passive mode, so the firewall will recognize possible attacks and keep a log, but shall not take any action. You could view comprehensive logs in the exact same section, including the IP address where the attack came from, what exactly the attacker attempted to do and at what time, what ModSecurity did, etc. For max protection of our clients we use a group of commercial firewall rules mixed with custom ones that are included by our system administrators.
ModSecurity in Semi-dedicated Servers
We've integrated ModSecurity by default inside all semi-dedicated server products, so your web apps will be protected as soon as you set them up under any domain or subdomain. The Hepsia CP which is included with the semi-dedicated accounts shall permit you to switch on or turn off the firewall for any website with a click. You will also have the ability to switch on a passive detection mode in which ModSecurity shall maintain a log of potential attacks without really stopping them. The comprehensive logs contain the nature of the attack and what ModSecurity response this attack caused, where it came from, and so forth. The list of rules we use is regularly updated in order to match any new risks which might appear on the Internet and it includes both commercial rules that we get from a security company and custom-written ones that our admins include in case they find a threat which is not present inside the commercial list yet.
ModSecurity in VPS Servers
ModSecurity comes with all Hepsia-based VPS servers we offer and it shall be switched on automatically for every new domain or subdomain you include on the machine. That way, any web app you install will be secured from the very beginning without doing anything by hand on your end. The firewall can be managed via the section of the Control Panel that has the same name. This is the area whereyou can disable ModSecurity or let its passive mode, so it won't take any action toward threats, but shall still maintain a thorough log. The recorded info is available within the same section as well and you will be able to see what IPs any attacks came from to enable you to block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity responded. The rules which we employ on our servers are a combination between commercial ones we get from a security company and custom ones that are included by our administrators to improve the security of any web applications hosted on our end.
ModSecurity in Dedicated Servers
All of our dedicated servers which are set up with the Hepsia hosting Control Panel feature ModSecurity, so any application that you upload or set up shall be protected from the very beginning and you won't have to bother about common attacks or vulnerabilities. An individual section in Hepsia will enable you to start or stop the firewall for each domain or subdomain, or turn on a detection mode so that it records info about intrusions, but does not take actions to stop them. What you'll discover in the logs can help you to secure your websites better - the IP an attack originated from, what site was attacked and exactly how, what ModSecurity rule was triggered, and so forth. With this data, you'll be able to see if a website needs an update, if you should block IPs from accessing your web server, and so forth. Besides the third-party commercial security rules for ModSecurity that we use, our administrators include custom ones as well if they come across a new threat that is not yet in the commercial bundle.