ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It is used to stop attacks toward script-driven Internet sites through the use of security rules that contain certain expressions. This way, the firewall can prevent hacking and spamming attempts and preserve even Internet sites which are not updated frequently. As an example, a number of unsuccessful login attempts to a script administrator area or attempts to execute a certain file with the purpose to get access to the script will trigger specific rules, so ModSecurity shall stop these activities the second it discovers them. The firewall is incredibly efficient since it tracks the whole HTTP traffic to a site in real time without slowing it down, so it could stop an attack before any damage is done. It additionally keeps an incredibly detailed log of all attack attempts which includes more information than standard Apache logs, so you can later check out the data and take further measures to boost the security of your websites if needed.
ModSecurity in Cloud Hosting
ModSecurity is available on all cloud hosting machines, so if you opt to host your Internet sites with our firm, they'll be resistant to an array of attacks. The firewall is enabled by default for all domains and subdomains, so there shall be nothing you shall have to do on your end. You shall be able to stop ModSecurity for any website if required, or to switch on a detection mode, so all activity shall be recorded, but the firewall will not take any real action. You shall be able to view specific logs via your Hepsia Control Panel including the IP where the attack came from, what the attacker planned to do and how ModSecurity addressed the threat. As we take the safety of our customers' websites very seriously, we employ a group of commercial rules that we get from one of the leading companies which maintain such rules. Our administrators also include custom rules to make certain that your sites will be shielded from as many threats as possible.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting solutions which we offer include ModSecurity and because the firewall is enabled by default, any website you set up under a domain or a subdomain will be protected immediately. An independent section within the Hepsia Control Panel which comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll allow you to stop and start the firewall for any website or switch on a detection mode. With the latter, ModSecurity won't take any action, but it shall still recognize possible attacks and will keep all data in a log as if it were completely active. The logs could be found inside the same section of the CP and they offer info about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to recognize and stop it, etcetera. The security rules we employ on our machines are a mix of commercial ones from a security firm and custom ones created by our system admins. Consequently, we offer higher security for your web applications as we can protect them from attacks before security firms release updates for brand new threats.
ModSecurity in Dedicated Servers Hosting
When you choose to host your websites on a dedicated server with the Hepsia Control Panel, your web applications will be secured straight away since ModSecurity is provided with all Hepsia-based plans. You'll be able to manage the firewall effortlessly and if needed, you shall be able to turn it off or enable its passive mode when it'll only keep a log of what's happening without taking any action to stop potential attacks. The logs which you will find in the very same section of the CP are extremely detailed and include information about the attacker IP address, what website and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, etc. This information shall enable you to take measures and increase the security of your websites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our admins include every time they identify attacks that have not yet been included within the commercial pack.