ModSecurity is an efficient firewall for Apache web servers which is used to stop attacks toward web applications. It keeps track of the HTTP traffic to a given site in real time and blocks any intrusion attempts the moment it detects them. The firewall relies on a set of rules to accomplish that - as an illustration, trying to log in to a script admin area without success a few times triggers one rule, sending a request to execute a certain file that may result in gaining access to the Internet site triggers a different rule, and so on. ModSecurity is amongst the best firewalls on the market and it'll protect even scripts that are not updated often since it can prevent attackers from using known exploits and security holes. Very thorough info about every single intrusion attempt is recorded and the logs the firewall keeps are considerably more detailed than the conventional logs generated by the Apache server, so you can later take a look at them and determine if you need to take additional measures so as to improve the safety of your script-driven Internet sites.
ModSecurity in Hosting
ModSecurity is provided with all hosting servers, so when you choose to host your websites with our company, they shall be shielded from a wide array of attacks. The firewall is enabled as standard for all domains and subdomains, so there'll be nothing you will have to do on your end. You'll be able to stop ModSecurity for any Internet site if needed, or to enable a detection mode, so that all activity shall be recorded, but the firewall shall not take any real action. You shall be able to view specific logs via your Hepsia CP including the IP address where the attack originated from, what the attacker planned to do and how ModSecurity handled the threat. Since we take the protection of our clients' websites very seriously, we employ a selection of commercial rules that we get from one of the top companies which maintain this type of rules. Our administrators also add custom rules to ensure that your websites shall be shielded from as many threats as possible.
ModSecurity in Semi-dedicated Hosting
ModSecurity is a part of our semi-dedicated hosting packages and if you opt to host your sites with us, there won't be anything special you'll have to do given that the firewall is turned on by default for all domains and subdomains you add through your hosting Control Panel. If required, you could disable ModSecurity for a particular website or switch on the so-called detection mode in which case the firewall will still function and record information, but won't do anything to prevent possible attacks on your sites. In depth logs will be readily available inside your CP and you will be able to see what sort of attacks occurred, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks came from, and so forth. We use two kinds of rules on our servers - commercial ones from an organization that operates in the field of web security, and custom made ones which our administrators often add to respond to newly discovered risks on time.
ModSecurity in Dedicated Servers Hosting
All of our dedicated servers which are set up with the Hepsia hosting Control Panel come with ModSecurity, so any application you upload or install will be secured from the very beginning and you'll not need to bother about common attacks or vulnerabilities. An individual section within Hepsia will allow you to start or stop the firewall for each domain or subdomain, or turn on a detection mode so that it records details about intrusions, but does not take actions to stop them. What you shall discover in the logs shall enable you to to secure your Internet sites better - the IP an attack originated from, what website was attacked and how, what ModSecurity rule was triggered, etc. With this info, you can see whether a website needs an update, if you need to block IPs from accessing your web server, etcetera. Aside from the third-party commercial security rules for ModSecurity we use, our admins add custom ones too when they find a new threat that is not yet included in the commercial bundle.