ModSecurity is an effective firewall for Apache web servers that is employed to stop attacks toward web applications. It monitors the HTTP traffic to a certain Internet site in real time and stops any intrusion attempts the instant it detects them. The firewall uses a set of rules to do this - as an example, attempting to log in to a script administrator area without success several times sets off one rule, sending a request to execute a particular file that could result in gaining access to the website triggers another rule, and so on. ModSecurity is one of the best firewalls around and it'll protect even scripts that are not updated on a regular basis because it can prevent attackers from using known exploits and security holes. Quite comprehensive data about each intrusion attempt is recorded and the logs the firewall maintains are considerably more comprehensive than the conventional logs provided by the Apache server, so you can later take a look at them and decide whether you need to take extra measures in order to increase the protection of your script-driven sites.
ModSecurity in Cloud Web Hosting
We provide ModSecurity with all cloud web hosting solutions, so your Internet apps shall be protected against destructive attacks. The firewall is switched on by default for all domains and subdomains, but if you'd like, you will be able to stop it through the respective part of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs that you shall find in Hepsia are quite detailed and include information about the nature of any attack, when it occurred and from what IP address, the firewall rule that was triggered, etc. We employ a set of commercial rules that are often updated, but sometimes our admins include custom rules as well so as to efficiently protect the sites hosted on our servers.
ModSecurity in Semi-dedicated Servers
We have integrated ModSecurity as a standard in all semi-dedicated server packages, so your web applications shall be protected as soon as you install them under any domain or subdomain. The Hepsia CP that comes with the semi-dedicated accounts will permit you to activate or turn off the firewall for any site with a click. You shall also be able to activate a passive detection mode with which ModSecurity will keep a log of potential attacks without actually stopping them. The thorough logs include the nature of the attack and what ModSecurity response that attack triggered, where it came from, and so on. The list of rules we employ is frequently updated in order to match any new threats which may appear on the Internet and it features both commercial rules that we get from a security firm and custom-written ones which our administrators add if they find a threat that's not present inside the commercial list yet.
ModSecurity in VPS Servers
Protection is vital to us, so we install ModSecurity on all VPS servers which are set up with the Hepsia Control Panel as a standard. The firewall could be managed via a dedicated section in Hepsia and is switched on automatically when you add a new domain or generate a subdomain, so you'll not have to do anything personally. You'll also be able to deactivate it or activate the so-called detection mode, so it'll keep a log of potential attacks that you can later analyze, but won't stop them. The logs in both passive and active modes contain details regarding the type of the attack and how it was stopped, what IP it originated from and other useful data that could help you to tighten the security of your sites by updating them or blocking IPs, for instance. In addition to the commercial rules which we get for ModSecurity from a third-party security firm, we also implement our own rules because from time to time we detect specific attacks that aren't yet present within the commercial pack. That way, we can boost the protection of your Virtual private server in a timely manner instead of waiting for a certified update.
ModSecurity in Dedicated Servers
If you choose to host your websites on a dedicated server with the Hepsia Control Panel, your web applications shall be secured right away because ModSecurity is provided with all Hepsia-based plans. You will be able to control the firewall easily and if needed, you'll be able to turn it off or switch on its passive mode when it will only maintain a log of what is occurring without taking any action to prevent possible attacks. The logs which you can find in the very same section of the Control Panel are very detailed and contain info about the attacker IP, what site and file were attacked and in what way, what rule the firewall employed to stop the intrusion, etcetera. This info will permit you to take measures and increase the security of your sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our admins include when they recognize attacks that have not yet been included in the commercial pack.