ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It is used to prevent attacks against script-driven websites through the use of security rules which contain certain expressions. In this way, the firewall can block hacking and spamming attempts and preserve even websites that are not updated often. As an example, several unsuccessful login attempts to a script administrator area or attempts to execute a specific file with the objective to get access to the script will trigger specific rules, so ModSecurity shall block out these activities the instant it detects them. The firewall is very efficient since it screens the whole HTTP traffic to an Internet site in real time without slowing it down, so it can easily stop an attack before any damage is done. It furthermore maintains an incredibly thorough log of all attack attempts which features more information than standard Apache logs, so you could later analyze the data and take further measures to boost the security of your websites if required.
ModSecurity in Hosting
ModSecurity is supplied with all hosting web servers, so if you opt to host your sites with our organization, they'll be protected against an array of attacks. The firewall is turned on by default for all domains and subdomains, so there'll be nothing you'll need to do on your end. You shall be able to stop ModSecurity for any website if needed, or to switch on a detection mode, so all activity shall be recorded, but the firewall will not take any real action. You'll be able to view comprehensive logs through your Hepsia CP including the IP address where the attack originated from, what the attacker wished to do and how ModSecurity addressed the threat. As we take the safety of our clients' Internet sites very seriously, we use a selection of commercial rules that we take from one of the best companies that maintain this sort of rules. Our administrators also add custom rules to make sure that your Internet sites will be protected against as many risks as possible.
ModSecurity in Semi-dedicated Hosting
ModSecurity is a part of our semi-dedicated hosting packages and if you opt to host your websites with our company, there won't be anything special you'll need to do since the firewall is switched on by default for all domains and subdomains which you include through your hosting CP. If needed, you'll be able to disable ModSecurity for a certain website or activate the so-called detection mode in which case the firewall shall still operate and record info, but will not do anything to stop possible attacks on your sites. In depth logs will be accessible within your Control Panel and you'll be able to see what sort of attacks happened, what security rules were triggered and how the firewall handled the threats, what IP addresses the attacks came from, etc. We employ two types of rules on our servers - commercial ones from a company that operates in the field of web security, and custom made ones that our administrators sometimes add to respond to newly discovered risks promptly.
ModSecurity in VPS
ModSecurity is pre-installed on all virtual private servers which are set up with the Hepsia hosting Control Panel, so your web apps will be secured from the instant your server is in a position. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if needed, you'll be able to disable it with a click through the corresponding section of Hepsia. You could also set it to operate in detection mode, so it will maintain an extensive log of any potential attacks without taking any action to prevent them. The logs can be found within the very same section and provide information regarding the nature of the attack, what IP address it came from and what ModSecurity rule was initiated to stop it. For maximum security, we employ not only commercial rules from a firm operating in the field of web security, but also custom ones which our administrators add personally in order to react to new threats that are still not addressed in the commercial rules.
ModSecurity in Dedicated Hosting
ModSecurity comes with all dedicated servers which are integrated with our Hepsia Control Panel and you'll not need to do anything specific on your end to use it as it's switched on by default each time you include a new domain or subdomain on your web server. In case it interferes with any of your applications, you shall be able to stop it via the respective section of Hepsia, or you may leave it in passive mode, so it'll recognize attacks and will still maintain a log for them, but won't block them. You'll be able to analyze the logs later to determine what you can do to enhance the security of your Internet sites as you'll find information such as where an intrusion attempt originated from, what site was attacked and based upon what rule ModSecurity responded, and so on. The rules that we employ are commercial, thus they are frequently updated by a security company, but to be on the safe side, our admins also add custom rules once in a while in order to deal with any new threats they have found.