ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its operation and if it discovers an intrusion attempt, it prevents it. The firewall additionally keeps a more thorough log for the website visitors than any server does, so you'll be able to monitor what is going on with your websites a lot better than if you rely simply on standard logs. ModSecurity uses security rules based on which it prevents attacks. For instance, it identifies whether someone is trying to log in to the administration area of a specific script several times or if a request is sent to execute a file with a certain command. In such cases these attempts trigger the corresponding rules and the software hinders the attempts immediately, after that records in-depth details about them in its logs. ModSecurity is amongst the most effective software firewalls out there and it can easily protect your web applications against thousands of threats and vulnerabilities, particularly in case you don’t update them or their plugins often.
ModSecurity in Hosting
ModSecurity is available on all hosting machines, so if you decide to host your websites with our organization, they'll be protected against a wide range of attacks. The firewall is turned on by default for all domains and subdomains, so there will be nothing you'll have to do on your end. You'll be able to stop ModSecurity for any site if required, or to activate a detection mode, so all activity will be recorded, but the firewall won't take any real action. You'll be able to view specific logs using your Hepsia Control Panel including the IP where the attack originated from, what the attacker wanted to do and how ModSecurity dealt with the threat. Since we take the protection of our clients' Internet sites seriously, we use a collection of commercial rules which we take from one of the top companies which maintain such rules. Our admins also add custom rules to make sure that your websites shall be resistant to as many threats as possible.
ModSecurity in VPS Servers
ModSecurity is provided with all Hepsia-based VPS servers which we offer and it will be switched on automatically for any new domain or subdomain which you include on the server. In this way, any web app that you install shall be protected right away without doing anything by hand on your end. The firewall can be managed via the section of the Control Panel which has the same name. This is the place whereyou could disable ModSecurity or activate its passive mode, so it won't take any action towards threats, but will still keep a detailed log. The recorded data is available within the same section as well and you will be able to see what IPs any attacks came from so that you stop them, what the nature of the attempted attacks was and based upon what security rules ModSecurity responded. The rules that we use on our servers are a combination between commercial ones we obtain from a security organization and custom ones that are added by our staff to enhance the protection of any web apps hosted on our end.
ModSecurity in Dedicated Servers
ModSecurity comes with all dedicated servers that are integrated with our Hepsia CP and you will not have to do anything specific on your end to employ it because it is activated by default each time you include a new domain or subdomain on your web server. In case it interferes with some of your programs, you shall be able to stop it via the respective area of Hepsia, or you can leave it working in passive mode, so it'll identify attacks and will still keep a log for them, but will not stop them. You may analyze the logs later to learn what you can do to boost the security of your sites as you will find info such as where an intrusion attempt came from, what website was attacked and based upon what rule ModSecurity responded, etcetera. The rules that we use are commercial, hence they are frequently updated by a security company, but to be on the safe side, our staff also add custom rules occasionally in order to deal with any new threats they have found.