ModSecurity is a highly effective firewall for Apache web servers that is used to prevent attacks towards web applications. It tracks the HTTP traffic to a specific website in real time and blocks any intrusion attempts the moment it identifies them. The firewall relies on a set of rules to do that - as an example, attempting to log in to a script admin area without success many times triggers one rule, sending a request to execute a certain file which could result in accessing the website triggers another rule, and so on. ModSecurity is among the best firewalls available and it will secure even scripts that are not updated regularly since it can prevent attackers from employing known exploits and security holes. Quite comprehensive information about every single intrusion attempt is recorded and the logs the firewall keeps are far more detailed than the regular logs generated by the Apache server, so you can later analyze them and decide whether you need to take extra measures so as to increase the security of your script-driven websites.
ModSecurity in Shared Website Hosting
ModSecurity is supplied with all shared website hosting web servers, so if you opt to host your Internet sites with our company, they shall be shielded from an array of attacks. The firewall is enabled as standard for all domains and subdomains, so there will be nothing you'll have to do on your end. You shall be able to stop ModSecurity for any website if necessary, or to enable a detection mode, so that all activity shall be recorded, but the firewall won't take any real action. You'll be able to view comprehensive logs from your Hepsia Control Panel including the IP where the attack came from, what the attacker wanted to do and how ModSecurity addressed the threat. As we take the security of our clients' Internet sites seriously, we use a selection of commercial rules that we take from one of the top firms that maintain this sort of rules. Our admins also add custom rules to make sure that your sites shall be protected against as many risks as possible.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting packages that we offer include ModSecurity and since the firewall is switched on by default, any site that you set up under a domain or a subdomain will be protected immediately. An individual section in the Hepsia CP that comes with the semi-dedicated accounts is dedicated to ModSecurity and it shall allow you to start and stop the firewall for any Internet site or switch on a detection mode. With the last option, ModSecurity will not take any action, but it'll still identify possible attacks and will keep all data inside a log as if it were completely active. The logs could be found inside the very same section of the Control Panel and they feature information about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, and so on. The security rules which we use on our web servers are a mix between commercial ones from a security firm and custom ones developed by our system administrators. Consequently, we offer greater security for your web applications as we can shield them from attacks even before security businesses release updates for completely new threats.
ModSecurity in VPS Web Hosting
ModSecurity is pre-installed on all virtual private servers which are offered with the Hepsia hosting Control Panel, so your web programs will be protected from the instant your server is ready. The firewall is activated by default for any domain or subdomain on the VPS, but if necessary, you'll be able to disable it with a mouse click via the corresponding section of Hepsia. You could also set it to operate in detection mode, so it'll maintain a detailed log of any potential attacks without taking any action to prevent them. The logs can be found inside the exact same section and include information regarding the nature of the attack, what IP it came from and what ModSecurity rule was triggered to stop it. For best security, we use not simply commercial rules from a business working in the field of web security, but also custom ones which our administrators add manually so as to respond to new risks that are still not addressed in the commercial rules.
ModSecurity in Dedicated Servers Hosting
If you opt to host your sites on a dedicated server with the Hepsia Control Panel, your web programs will be protected right from the start as ModSecurity is supplied with all Hepsia-based solutions. You'll be able to regulate the firewall with ease and if necessary, you'll be able to turn it off or activate its passive mode when it will only maintain a log of what is taking place without taking any action to prevent possible attacks. The logs that you can find within the same section of the Control Panel are really detailed and include data about the attacker IP, what website and file were attacked and in what ways, what rule the firewall employed to prevent the intrusion, and so on. This data will enable you to take measures and increase the security of your Internet sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones that our administrators include every time they detect attacks which have not yet been included within the commercial pack.