ModSecurity is a plugin for Apache web servers that functions as a web app layer firewall. It's used to prevent attacks towards script-driven websites by using security rules which contain certain expressions. This way, the firewall can stop hacking and spamming attempts and preserve even Internet sites that are not updated often. For instance, several unsuccessful login attempts to a script admin area or attempts to execute a certain file with the objective to get access to the script will trigger certain rules, so ModSecurity shall block out these activities the minute it identifies them. The firewall is incredibly efficient because it tracks the whole HTTP traffic to an Internet site in real time without slowing it down, so it will be able to prevent an attack before any damage is done. It additionally maintains a very thorough log of all attack attempts which includes more information than typical Apache logs, so you could later check out the data and take further measures to increase the security of your Internet sites if necessary.
ModSecurity in Cloud Hosting
ModSecurity is provided with all cloud hosting web servers, so when you opt to host your Internet sites with our business, they shall be shielded from a wide range of attacks. The firewall is turned on as standard for all domains and subdomains, so there shall be nothing you shall need to do on your end. You'll be able to stop ModSecurity for any site if required, or to activate a detection mode, so that all activity will be recorded, but the firewall shall not take any real action. You'll be able to view comprehensive logs via your Hepsia CP including the IP where the attack came from, what the attacker planned to do and how ModSecurity handled the threat. As we take the protection of our customers' Internet sites seriously, we use a collection of commercial rules that we get from one of the best companies which maintain this kind of rules. Our administrators also add custom rules to make sure that your websites will be resistant to as many risks as possible.
ModSecurity in Semi-dedicated Servers
We've included ModSecurity as a standard within all semi-dedicated server products, so your web apps will be protected the instant you install them under any domain or subdomain. The Hepsia CP which comes with the semi-dedicated accounts will permit you to activate or disable the firewall for any Internet site with a mouse click. You will also have the ability to switch on a passive detection mode in which ModSecurity shall keep a log of possible attacks without really preventing them. The comprehensive logs contain the nature of the attack and what ModSecurity response that attack triggered, where it came from, etcetera. The list of rules we employ is regularly updated in order to match any new threats that might appear on the Internet and it features both commercial rules that we get from a security company and custom-written ones which our admins add in the event that they find a threat that is not present in the commercial list yet.
ModSecurity in VPS Servers
Security is essential to us, so we install ModSecurity on all VPS servers which are made available with the Hepsia CP as a standard. The firewall can be managed through a dedicated section inside Hepsia and is turned on automatically when you include a new domain or generate a subdomain, so you'll not need to do anything personally. You will also be able to disable it or switch on the so-called detection mode, so it shall keep a log of potential attacks you can later study, but shall not prevent them. The logs in both passive and active modes contain information regarding the type of the attack and how it was eliminated, what IP it came from and other valuable info which might help you to tighten the security of your Internet sites by updating them or blocking IPs, for instance. In addition to the commercial rules we get for ModSecurity from a third-party security enterprise, we also employ our own rules because once in a while we discover specific attacks that are not yet present inside the commercial package. This way, we can easily increase the security of your Virtual private server right away instead of awaiting an official update.
ModSecurity in Dedicated Servers
ModSecurity comes with all dedicated servers which are integrated with our Hepsia CP and you won't have to do anything specific on your end to employ it because it is switched on by default every time you add a new domain or subdomain on your web server. In the event that it disrupts some of your apps, you'll be able to stop it through the respective area of Hepsia, or you may leave it in passive mode, so it shall detect attacks and shall still maintain a log for them, but shall not prevent them. You could analyze the logs later to determine what you can do to increase the safety of your Internet sites since you will find information such as where an intrusion attempt came from, what website was attacked and based upon what rule ModSecurity reacted, etc. The rules which we employ are commercial, hence they are constantly updated by a security firm, but to be on the safe side, our staff also add custom rules from time to time in order to respond to any new threats they have discovered.