ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its functionality and in case it detects an intrusion attempt, it prevents it. The firewall furthermore maintains a more thorough log for the website visitors than any server does, so you'll be able to keep track of what is going on with your Internet sites a lot better than if you rely only on conventional logs. ModSecurity employs security rules based on which it helps prevent attacks. For instance, it identifies if somebody is trying to log in to the admin area of a specific script several times or if a request is sent to execute a file with a particular command. In these circumstances these attempts trigger the corresponding rules and the firewall software hinders the attempts instantly, and then records detailed info about them within its logs. ModSecurity is among the best software firewalls on the market and it can easily protect your web applications against many threats and vulnerabilities, especially if you don’t update them or their plugins often.
ModSecurity in Shared Hosting
ModSecurity is supplied with all shared hosting machines, so if you opt to host your websites with our business, they will be protected against a wide array of attacks. The firewall is enabled as standard for all domains and subdomains, so there shall be nothing you shall have to do on your end. You'll be able to stop ModSecurity for any site if needed, or to switch on a detection mode, so all activity shall be recorded, but the firewall will not take any real action. You'll be able to view comprehensive logs via your Hepsia CP including the IP address where the attack originated from, what the attacker wanted to do and how ModSecurity handled the threat. Since we take the security of our customers' Internet sites very seriously, we use a selection of commercial rules that we take from one of the top companies that maintain this type of rules. Our administrators also include custom rules to make sure that your sites will be shielded from as many risks as possible.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server plans that we offer include ModSecurity and since the firewall is enabled by default, any site that you create under a domain or a subdomain shall be protected right from the start. A separate section in the Hepsia Control Panel that comes with the semi-dedicated accounts is dedicated to ModSecurity and it shall allow you to start and stop the firewall for any Internet site or enable a detection mode. With the last mentioned, ModSecurity will not take any action, but it shall still identify possible attacks and will keep all data within a log as if it were 100% active. The logs can be found in the exact same section of the Control Panel and they feature info about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, etc. The security rules that we use on our servers are a mix of commercial ones from a security firm and custom ones made by our system administrators. Consequently, we provide increased security for your web programs as we can shield them from attacks even before security companies release updates for brand new threats.
ModSecurity in Dedicated Servers
When you choose to host your sites on a dedicated server with the Hepsia CP, your web apps shall be protected immediately as ModSecurity is available with all Hepsia-based plans. You will be able to control the firewall easily and if needed, you shall be able to turn it off or switch on its passive mode when it shall only maintain a log of what is taking place without taking any action to stop possible attacks. The logs which you will find within the exact same section of the Control Panel are quite detailed and feature data about the attacker IP address, what site and file were attacked and in what way, what rule the firewall used to prevent the intrusion, etcetera. This data will permit you to take measures and increase the security of your sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our administrators include every time they identify attacks that haven't yet been included within the commercial pack.