ModSecurity is an effective firewall for Apache web servers that's used to prevent attacks toward web applications. It keeps track of the HTTP traffic to a specific site in real time and stops any intrusion attempts as soon as it discovers them. The firewall uses a set of rules to do that - as an example, trying to log in to a script administration area without success many times activates one rule, sending a request to execute a certain file which could result in accessing the Internet site triggers a different rule, and so forth. ModSecurity is one of the best firewalls around and it will preserve even scripts which aren't updated frequently since it can prevent attackers from employing known exploits and security holes. Incredibly thorough information about every single intrusion attempt is recorded and the logs the firewall maintains are a lot more comprehensive than the standard logs generated by the Apache server, so you can later take a look at them and determine if you need to take more measures in order to improve the safety of your script-driven Internet sites.
ModSecurity in Cloud Hosting
We offer ModSecurity with all cloud hosting solutions, so your web apps will be protected against harmful attacks. The firewall is activated as standard for all domains and subdomains, but in case you would like, you'll be able to stop it through the respective part of your Hepsia Control Panel. You could also switch on a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you'll find inside Hepsia are very detailed and feature information about the nature of any attack, when it took place and from what IP address, the firewall rule that was triggered, etcetera. We use a set of commercial rules that are often updated, but sometimes our administrators add custom rules as well in order to better protect the websites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
Any web application that you set up within your new semi-dedicated hosting account shall be protected by ModSecurity since the firewall is included with all our hosting solutions and is switched on by default for any domain and subdomain that you add or create through your Hepsia hosting CP. You'll be able to manage ModSecurity through a dedicated area within Hepsia where not simply can you activate or deactivate it fully, but you could also enable a passive mode, so the firewall won't stop anything, but it'll still maintain a record of possible attacks. This normally requires just a mouse click and you will be able to view the logs regardless if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was handled, and so forth. The firewall uses 2 sets of rules on our web servers - a commercial one that we get from a third-party web security provider and a custom one that our administrators update personally in order to respond to recently discovered threats at the earliest opportunity.
ModSecurity in VPS Web Hosting
All virtual private servers that are provided with the Hepsia CP include ModSecurity. The firewall is installed and activated by default for all domains which are hosted on the server, so there will not be anything special that you'll need to do to protect your Internet sites. It'll take you simply a mouse click to stop ModSecurity if required or to switch on its passive mode so that it records what occurs without taking any actions to stop intrusions. You'll be able to view the logs generated in passive or active mode through the corresponding section of Hepsia and learn more about the form of the attack, where it originated from, what rule the firewall used to take care of it, and so on. We employ a mixture of commercial and custom rules in order to make sure that ModSecurity shall block out as many risks as possible, hence enhancing the protection of your web apps as much as possible.
ModSecurity in Dedicated Servers Hosting
All our dedicated servers that are set up with the Hepsia hosting Control Panel include ModSecurity, so any app which you upload or set up will be properly secured from the very beginning and you will not have to worry about common attacks or vulnerabilities. A separate section inside Hepsia will allow you to start or stop the firewall for any domain or subdomain, or turn on a detection mode so that it records info about intrusions, but doesn't take actions to stop them. What you will see in the logs shall enable you to to secure your Internet sites better - the IP an attack came from, what website was attacked and exactly how, what ModSecurity rule was triggered, etc. With this info, you'll be able to see if an Internet site needs an update, if you ought to block IPs from accessing your hosting server, and so on. Besides the third-party commercial security rules for ModSecurity that we use, our admins include custom ones too if they come across a new threat that's not yet included in the commercial bundle.