ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its performance and in case it identifies an intrusion attempt, it prevents it. The firewall furthermore maintains a more comprehensive log for the website visitors than any web server does, so you shall be able to keep track of what is going on with your sites better than if you rely simply on standard logs. ModSecurity uses security rules based on which it prevents attacks. For example, it recognizes whether someone is attempting to log in to the admin area of a specific script multiple times or if a request is sent to execute a file with a particular command. In these instances these attempts set off the corresponding rules and the firewall software blocks the attempts instantly, then records detailed info about them in its logs. ModSecurity is amongst the very best software firewalls available and it can easily protect your web apps against a huge number of threats and vulnerabilities, especially in case you don’t update them or their plugins often.
ModSecurity in Cloud Hosting
ModSecurity comes by default with all cloud hosting packages which we provide and it shall be turned on automatically for any domain or subdomain which you add/create in your Hepsia hosting CP. The firewall has 3 different modes, so you can activate and deactivate it with just a click or set it to detection mode, so it'll maintain a log of all attacks, but it shall not do anything to stop them. The log for each of your sites shall feature comprehensive info including the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules which we use are frequently updated and comprise of both commercial ones which we get from a third-party security firm and custom ones which our system administrators include in case that they detect a new type of attacks. That way, the sites you host here shall be much more protected without any action expected on your end.
ModSecurity in Semi-dedicated Hosting
We have integrated ModSecurity as a standard within all semi-dedicated hosting plans, so your web applications will be protected the instant you set them up under any domain or subdomain. The Hepsia Control Panel which is included with the semi-dedicated accounts will allow you to enable or disable the firewall for any site with a click. You will also have the ability to turn on a passive detection mode with which ModSecurity shall maintain a log of potential attacks without really preventing them. The comprehensive logs include the nature of the attack and what ModSecurity response this attack activated, where it originated from, etcetera. The list of rules which we employ is constantly updated as to match any new threats which might appear on the Internet and it comes with both commercial rules that we get from a security company and custom-written ones that our administrators add in the event that they find a threat that is not present inside the commercial list yet.
ModSecurity in Dedicated Web Hosting
All of our dedicated servers which are set up with the Hepsia hosting Control Panel feature ModSecurity, so any app which you upload or set up will be properly secured from the very beginning and you'll not have to bother about common attacks or vulnerabilities. An independent section inside Hepsia will permit you to start or stop the firewall for every domain or subdomain, or switch on a detection mode so that it records info about intrusions, but does not take actions to stop them. What you shall find in the logs can easily enable you to to secure your Internet sites better - the IP an attack came from, what site was attacked and exactly how, what ModSecurity rule was triggered, etc. With this information, you'll be able to see if an Internet site needs an update, whether you should block IPs from accessing your web server, etc. Aside from the third-party commercial security rules for ModSecurity which we use, our administrators include custom ones too when they find a new threat that's not yet included in the commercial bundle.