ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It is used to stop attacks against script-driven Internet sites by using security rules which contain certain expressions. This way, the firewall can block hacking and spamming attempts and preserve even Internet sites that are not updated regularly. As an example, several unsuccessful login attempts to a script administrative area or attempts to execute a particular file with the intention to get access to the script shall trigger certain rules, so ModSecurity shall block these activities the second it discovers them. The firewall is very efficient because it tracks the entire HTTP traffic to an Internet site in real time without slowing it down, so it can stop an attack before any damage is done. It additionally keeps a very detailed log of all attack attempts that includes more info than typical Apache logs, so you can later check out the data and take further measures to boost the security of your Internet sites if necessary.
ModSecurity in Shared Website Hosting
ModSecurity is provided with all shared website hosting web servers, so when you decide to host your Internet sites with our company, they'll be protected against a wide range of attacks. The firewall is turned on by default for all domains and subdomains, so there shall be nothing you shall have to do on your end. You'll be able to stop ModSecurity for any Internet site if required, or to activate a detection mode, so all activity will be recorded, but the firewall won't take any real action. You will be able to view detailed logs via your Hepsia CP including the IP where the attack originated from, what the attacker wanted to do and how ModSecurity addressed the threat. As we take the protection of our clients' websites seriously, we employ a set of commercial rules which we take from one of the leading companies which maintain this sort of rules. Our administrators also add custom rules to ensure that your sites shall be protected against as many risks as possible.
ModSecurity in Semi-dedicated Hosting
We've included ModSecurity by default within all semi-dedicated hosting packages, so your web applications shall be protected as soon as you set them up under any domain or subdomain. The Hepsia CP which comes with the semi-dedicated accounts will allow you to enable or turn off the firewall for any site with a mouse click. You'll also have the ability to turn on a passive detection mode through which ModSecurity will keep a log of potential attacks without actually preventing them. The thorough logs contain the nature of the attack and what ModSecurity response that attack caused, where it came from, etcetera. The list of rules which we employ is regularly updated as to match any new threats which may appear on the Internet and it features both commercial rules that we get from a security corporation and custom-written ones that our admins include in case they find a threat that's not present within the commercial list yet.
ModSecurity in VPS Web Hosting
All virtual private servers which are set up with the Hepsia CP include ModSecurity. The firewall is installed and activated by default for all domains which are hosted on the machine, so there won't be anything special that you'll need to do to protect your websites. It shall take you simply a mouse click to stop ModSecurity if required or to turn on its passive mode so that it records what happens without taking any actions to prevent intrusions. You shall be able to look at the logs produced in passive or active mode from the corresponding section of Hepsia and discover more about the form of the attack, where it originated from, what rule the firewall used to handle it, etc. We use a mix of commercial and custom rules so as to make certain that ModSecurity will block out as many risks as possible, therefore enhancing the security of your web programs as much as possible.
ModSecurity in Dedicated Servers Hosting
When you decide to host your websites on a dedicated server with the Hepsia Control Panel, your web apps shall be secured straight away since ModSecurity is supplied with all Hepsia-based packages. You shall be able to manage the firewall with ease and if required, you'll be able to turn it off or switch on its passive mode when it shall only maintain a log of what is occurring without taking any action to stop potential attacks. The logs which you can find within the same section of the Control Panel are incredibly detailed and feature information about the attacker IP, what site and file were attacked and in what ways, what rule the firewall used to stop the intrusion, and so on. This info shall enable you to take measures and enhance the protection of your websites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our staff include when they recognize attacks which have not yet been included within the commercial pack.