ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its functionality and if it identifies an intrusion attempt, it blocks it. The firewall furthermore keeps a more comprehensive log for the website visitors than any web server does, so you will be able to keep track of what is going on with your Internet sites a lot better than if you rely simply on conventional logs. ModSecurity employs security rules based on which it prevents attacks. For example, it detects whether anyone is attempting to log in to the administration area of a certain script several times or if a request is sent to execute a file with a particular command. In these instances these attempts trigger the corresponding rules and the firewall software blocks the attempts immediately, and then records detailed details about them within its logs. ModSecurity is amongst the most effective software firewalls out there and it could easily protect your web applications against a huge number of threats and vulnerabilities, particularly if you don’t update them or their plugins regularly.
ModSecurity in Website Hosting
We provide ModSecurity with all website hosting
packages, so your web applications will be shielded from harmful attacks. The firewall is turned on by default for all domains and subdomains, but if you would like, you will be able to stop it through the respective section of your Hepsia Control Panel. You can also switch on a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you'll discover in Hepsia are extremely detailed and offer data about the nature of any attack, when it occurred and from what IP address, the firewall rule which was triggered, etcetera. We employ a range of commercial rules which are regularly updated, but sometimes our admins include custom rules as well so as to better protect the Internet sites hosted on our servers.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server
plans which we offer feature ModSecurity and given that the firewall is turned on by default, any site you set up under a domain or a subdomain shall be secured straight away. An independent section in the Hepsia CP which comes with the semi-dedicated accounts is dedicated to ModSecurity and it will allow you to start and stop the firewall for any Internet site or switch on a detection mode. With the last mentioned, ModSecurity shall not take any action, but it will still detect possible attacks and will keep all data in a log as if it were 100% active. The logs can be found within the same section of the CP and they include specifics about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, etc. The security rules which we employ on our web servers are a mix of commercial ones from a security company and custom ones created by our system administrators. Therefore, we provide higher security for your web apps as we can defend them from attacks even before security businesses release updates for completely new threats.
ModSecurity in Dedicated Servers
All our dedicated servers
that are set up with the Hepsia hosting CP feature ModSecurity, so any application that you upload or install will be properly secured from the very beginning and you'll not need to stress about common attacks or vulnerabilities. An individual section in Hepsia will enable you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records info about intrusions, but doesn't take actions to prevent them. What you'll find in the logs shall help you to secure your Internet sites better - the IP an attack originated from, what website was attacked and in what way, what ModSecurity rule was triggered, and so on. With this data, you can see whether a site needs an update, if you ought to block IPs from accessing your hosting server, and so forth. On top of the third-party commercial security rules for ModSecurity that we use, our admins add custom ones as well whenever they find a new threat that is not yet included in the commercial bundle.