ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its operation and in case it discovers an intrusion attempt, it blocks it. The firewall furthermore maintains a more thorough log for the traffic than any web server does, so you'll manage to keep track of what is happening with your Internet sites better than if you rely only on standard logs. ModSecurity employs security rules based on which it stops attacks. For example, it detects whether somebody is trying to log in to the admin area of a given script several times or if a request is sent to execute a file with a particular command. In these circumstances these attempts set off the corresponding rules and the firewall software hinders the attempts in real time, then records comprehensive info about them inside its logs. ModSecurity is among the very best software firewalls out there and it can protect your web applications against a large number of threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.
ModSecurity in Website Hosting
ModSecurity is available on all website hosting machines, so if you choose to host your sites with our company, they shall be shielded from an array of attacks. The firewall is enabled as standard for all domains and subdomains, so there will be nothing you'll need to do on your end. You shall be able to stop ModSecurity for any Internet site if needed, or to switch on a detection mode, so all activity shall be recorded, but the firewall will not take any real action. You shall be able to view detailed logs from your Hepsia Control Panel including the IP address where the attack came from, what the attacker wished to do and how ModSecurity addressed the threat. As we take the safety of our clients' websites very seriously, we use a set of commercial rules which we take from one of the leading companies which maintain this type of rules. Our administrators also add custom rules to make certain that your websites will be resistant to as many threats as possible.
ModSecurity in Semi-dedicated Servers
We've incorporated ModSecurity by default within all semi-dedicated server packages, so your web apps shall be protected as soon as you install them under any domain or subdomain. The Hepsia Control Panel which comes with the semi-dedicated accounts shall allow you to switch on or disable the firewall for any website with a mouse click. You will also be able to activate a passive detection mode through which ModSecurity shall keep a log of possible attacks without really stopping them. The detailed logs include the nature of the attack and what ModSecurity response that attack caused, where it originated from, and so forth. The list of rules which we employ is frequently updated as to match any new risks which might appear on the Internet and it comes with both commercial rules that we get from a security business and custom-written ones that our admins add in the event that they find a threat that's not present in the commercial list yet.
ModSecurity in Dedicated Servers
All our dedicated servers that are set up with the Hepsia hosting CP include ModSecurity, so any app you upload or install shall be secured from the very beginning and you'll not need to stress about common attacks or vulnerabilities. A separate section inside Hepsia will enable you to start or stop the firewall for any domain or subdomain, or switch on a detection mode so that it records information about intrusions, but does not take actions to prevent them. What you shall discover in the logs can enable you to to secure your Internet sites better - the IP an attack originated from, what site was attacked and how, what ModSecurity rule was triggered, and so forth. With this data, you could see if a site needs an update, whether you ought to block IPs from accessing your server, and so forth. In addition to the third-party commercial security rules for ModSecurity which we use, our admins add custom ones too if they discover a new threat that's not yet included in the commercial bundle.