ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its performance and when it detects an intrusion attempt, it blocks it. The firewall furthermore maintains a more comprehensive log for the site visitors than any server does, so you'll manage to monitor what's going on with your sites much better than if you rely only on conventional logs. ModSecurity uses security rules based on which it stops attacks. For example, it recognizes whether somebody is trying to log in to the administration area of a given script multiple times or if a request is sent to execute a file with a particular command. In these cases these attempts set off the corresponding rules and the firewall software hinders the attempts in real time, after that records comprehensive info about them within its logs. ModSecurity is among the most effective software firewalls available and it can protect your web applications against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins often.
ModSecurity in Shared Website Hosting
ModSecurity is available on all shared website hosting servers, so if you choose to host your websites with our organization, they will be resistant to a wide range of attacks. The firewall is enabled by default for all domains and subdomains, so there shall be nothing you shall have to do on your end. You shall be able to stop ModSecurity for any Internet site if needed, or to switch on a detection mode, so all activity will be recorded, but the firewall shall not take any real action. You will be able to view detailed logs from your Hepsia CP including the IP address where the attack originated from, what the attacker planned to do and how ModSecurity handled the threat. Since we take the safety of our customers' Internet sites seriously, we use a group of commercial rules which we take from one of the top companies which maintain this type of rules. Our administrators also include custom rules to make sure that your websites shall be shielded from as many threats as possible.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting plans that we offer feature ModSecurity and since the firewall is turned on by default, any site that you create under a domain or a subdomain will be secured right away. A separate section in the Hepsia CP which comes with the semi-dedicated accounts is dedicated to ModSecurity and it shall allow you to stop and start the firewall for any site or switch on a detection mode. With the last option, ModSecurity will not take any action, but it will still detect possible attacks and will keep all info inside a log as if it were completely active. The logs could be found in the exact same section of the Control Panel and they feature information about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, and so forth. The security rules that we use on our machines are a mix of commercial ones from a security business and custom ones developed by our system administrators. Therefore, we provide higher security for your web apps as we can shield them from attacks even before security businesses release updates for new threats.
ModSecurity in VPS Hosting
All virtual private servers which are set up with the Hepsia Control Panel come with ModSecurity. The firewall is set up and turned on by default for all domains which are hosted on the server, so there shall not be anything special which you will have to do to protect your Internet sites. It shall take you simply a click to stop ModSecurity if required or to turn on its passive mode so that it records what goes on without taking any actions to stop intrusions. You shall be able to look at the logs generated in active or passive mode through the corresponding section of Hepsia and find out more about the form of the attack, where it came from, what rule the firewall used to take care of it, etcetera. We use a mix of commercial and custom rules in order to make sure that ModSecurity will block out as many threats as possible, hence enhancing the security of your web programs as much as possible.
ModSecurity in Dedicated Web Hosting
When you choose to host your websites on a dedicated server with the Hepsia Control Panel, your web apps shall be secured immediately as ModSecurity is available with all Hepsia-based solutions. You will be able to control the firewall with ease and if needed, you will be able to turn it off or switch on its passive mode when it will only maintain a log of what's taking place without taking any action to stop possible attacks. The logs that you will find inside the very same section of the Control Panel are incredibly detailed and contain details about the attacker IP address, what website and file were attacked and in what ways, what rule the firewall used to stop the intrusion, etc. This info shall permit you to take measures and improve the security of your Internet sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our administrators include every time they detect attacks which have not yet been included in the commercial pack.