ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its overall performance and if it detects an intrusion attempt, it prevents it. The firewall also maintains a more detailed log for the site visitors than any web server does, so you'll be able to monitor what is happening with your sites a lot better than if you rely simply on standard logs. ModSecurity uses security rules based on which it stops attacks. For instance, it identifies if anyone is trying to log in to the admin area of a specific script several times or if a request is sent to execute a file with a certain command. In these situations these attempts set off the corresponding rules and the firewall program blocks the attempts right away, after that records detailed information about them within its logs. ModSecurity is among the very best software firewalls on the market and it can easily protect your web applications against thousands of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.
ModSecurity in Shared Hosting
ModSecurity is available on all shared hosting machines, so when you opt to host your Internet sites with our business, they shall be shielded from a wide range of attacks. The firewall is enabled as standard for all domains and subdomains, so there'll be nothing you shall need to do on your end. You shall be able to stop ModSecurity for any site if required, or to switch on a detection mode, so that all activity shall be recorded, but the firewall won't take any real action. You shall be able to view specific logs via your Hepsia CP including the IP where the attack originated from, what the attacker wished to do and how ModSecurity handled the threat. Since we take the protection of our clients' Internet sites seriously, we employ a selection of commercial rules which we get from one of the top firms that maintain this sort of rules. Our administrators also include custom rules to make certain that your Internet sites will be protected against as many risks as possible.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server packages that we offer include ModSecurity and since the firewall is turned on by default, any site that you set up under a domain or a subdomain shall be protected straight away. An independent section inside the Hepsia CP that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll permit you to start and stop the firewall for any site or activate a detection mode. With the latter, ModSecurity shall not take any action, but it'll still detect possible attacks and shall keep all info inside a log as if it were 100% active. The logs could be found within the exact same section of the Control Panel and they include information regarding the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, etcetera. The security rules we use on our servers are a mix of commercial ones from a security business and custom ones developed by our system administrators. For that reason, we offer greater security for your web applications as we can shield them from attacks before security firms release updates for completely new threats.
ModSecurity in Dedicated Servers
ModSecurity is provided with all dedicated servers which are integrated with our Hepsia Control Panel and you'll not need to do anything specific on your end to use it as it is turned on by default every time you add a new domain or subdomain on your server. If it disrupts some of your applications, you shall be able to stop it via the respective section of Hepsia, or you can leave it in passive mode, so it'll identify attacks and shall still keep a log for them, but won't stop them. You could analyze the logs later to determine what you can do to improve the safety of your websites as you shall find information such as where an intrusion attempt came from, what site was attacked and based upon what rule ModSecurity reacted, and so on. The rules which we employ are commercial, thus they're frequently updated by a security firm, but to be on the safe side, our administrators also include custom rules occasionally in order to react to any new threats they have discovered.