ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It is used to prevent attacks towards script-driven sites by using security rules which contain certain expressions. In this way, the firewall can block hacking and spamming attempts and shield even websites that are not updated on a regular basis. For example, multiple failed login attempts to a script administrator area or attempts to execute a specific file with the purpose to get access to the script shall trigger specific rules, so ModSecurity will stop these activities the second it discovers them. The firewall is incredibly efficient since it screens the whole HTTP traffic to a website in real time without slowing it down, so it can easily stop an attack before any harm is done. It also maintains a very thorough log of all attack attempts which contains more info than standard Apache logs, so you could later examine the data and take extra measures to increase the security of your Internet sites if required.
ModSecurity in Cloud Hosting
ModSecurity is provided with all cloud hosting servers, so when you choose to host your Internet sites with our company, they'll be shielded from an array of attacks. The firewall is turned on as standard for all domains and subdomains, so there'll be nothing you'll have to do on your end. You shall be able to stop ModSecurity for any site if needed, or to enable a detection mode, so that all activity will be recorded, but the firewall will not take any real action. You will be able to view detailed logs from your Hepsia Control Panel including the IP where the attack came from, what the attacker planned to do and how ModSecurity addressed the threat. Since we take the security of our customers' Internet sites seriously, we employ a collection of commercial rules that we get from one of the top companies that maintain this type of rules. Our admins also include custom rules to ensure that your Internet sites will be protected against as many risks as possible.
ModSecurity in Semi-dedicated Servers
ModSecurity is a part of our semi-dedicated server plans and if you opt to host your sites with us, there will not be anything special you will have to do given that the firewall is activated by default for all domains and subdomains that you add via your hosting Control Panel. If required, you'll be able to disable ModSecurity for a given site or turn on the so-called detection mode in which case the firewall will still work and record information, but shall not do anything to prevent possible attacks on your sites. In depth logs shall be readily available within your CP and you will be able to see what type of attacks happened, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks originated from, and so forth. We employ two kinds of rules on our servers - commercial ones from a business that operates in the field of web security, and custom made ones that our admins often include to respond to newly found threats in a timely manner.
ModSecurity in VPS Servers
Protection is vital to us, so we install ModSecurity on all VPS servers which are made available with the Hepsia CP by default. The firewall can be managed via a dedicated section in Hepsia and is switched on automatically when you include a new domain or generate a subdomain, so you will not have to do anything by hand. You'll also be able to disable it or activate the so-called detection mode, so it will keep a log of potential attacks which you can later examine, but won't block them. The logs in both passive and active modes offer details regarding the type of the attack and how it was stopped, what IP it originated from and other important information which might help you to tighten the security of your websites by updating them or blocking IPs, for example. On top of the commercial rules we get for ModSecurity from a third-party security firm, we also use our own rules because once in a while we identify specific attacks that aren't yet present inside the commercial group. This way, we can easily boost the security of your Virtual private server right away rather than waiting for an official update.
ModSecurity in Dedicated Servers
All our dedicated servers which are set up with the Hepsia hosting CP feature ModSecurity, so any program which you upload or install shall be properly secured from the very beginning and you won't have to concern yourself with common attacks or vulnerabilities. An independent section in Hepsia will permit you to start or stop the firewall for any domain or subdomain, or turn on a detection mode so that it records information regarding intrusions, but does not take actions to prevent them. What you shall discover in the logs can easily help you to secure your websites better - the IP an attack came from, what website was attacked and exactly how, what ModSecurity rule was triggered, etcetera. With this info, you can see whether a website needs an update, if you need to block IPs from accessing your web server, and so on. Besides the third-party commercial security rules for ModSecurity we use, our administrators include custom ones too whenever they find a new threat that is not yet in the commercial bundle.