ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It is employed to prevent attacks towards script-driven Internet sites by employing security rules which contain specific expressions. That way, the firewall can block hacking and spamming attempts and shield even websites that are not updated regularly. For instance, numerous unsuccessful login attempts to a script admin area or attempts to execute a particular file with the objective to get access to the script shall trigger particular rules, so ModSecurity shall block out these activities the second it identifies them. The firewall is quite efficient because it screens the whole HTTP traffic to a website in real time without slowing it down, so it can prevent an attack before any harm is done. It additionally maintains an incredibly detailed log of all attack attempts which features more info than conventional Apache logs, so you could later examine the data and take further measures to improve the security of your sites if required.
ModSecurity in Cloud Hosting
ModSecurity is available on all cloud hosting machines, so if you opt to host your sites with our firm, they'll be resistant to an array of attacks. The firewall is enabled by default for all domains and subdomains, so there will be nothing you will need to do on your end. You'll be able to stop ModSecurity for any site if required, or to switch on a detection mode, so all activity will be recorded, but the firewall shall not take any real action. You shall be able to view detailed logs through your Hepsia Control Panel including the IP address where the attack originated from, what the attacker wanted to do and how ModSecurity handled the threat. Since we take the safety of our clients' sites seriously, we use a collection of commercial rules that we get from one of the top firms that maintain this kind of rules. Our administrators also include custom rules to make certain that your sites shall be protected against as many threats as possible.
ModSecurity in Semi-dedicated Servers
ModSecurity is part of our semi-dedicated server solutions and if you choose to host your sites with us, there won't be anything special you'll need to do as the firewall is activated by default for all domains and subdomains that you include via your hosting CP. If necessary, you can disable ModSecurity for a certain site or switch on the so-called detection mode in which case the firewall shall still work and record information, but will not do anything to stop potential attacks on your sites. Comprehensive logs shall be readily available within your CP and you will be able to see what sort of attacks happened, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, and so on. We employ 2 types of rules on our servers - commercial ones from an organization that operates in the field of web security, and customized ones which our administrators sometimes include to respond to newly discovered threats on time.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers that are offered with the Hepsia hosting CP, so your web apps shall be secured from the moment your server is in a position. The firewall is turned on by default for any domain or subdomain on the Virtual Private Server, but if necessary, you could deactivate it with a click from the corresponding section of Hepsia. You may also set it to operate in detection mode, so it'll keep a comprehensive log of any potential attacks without taking any action to prevent them. The logs can be found within the exact same section and provide info about the nature of the attack, what IP it originated from and what ModSecurity rule was initiated to stop it. For optimum security, we use not just commercial rules from a company operating in the field of web security, but also custom ones that our administrators include manually so as to react to new threats which are still not addressed in the commercial rules.
ModSecurity in Dedicated Servers
All our dedicated servers which are set up with the Hepsia hosting Control Panel come with ModSecurity, so any program you upload or set up shall be secured from the very beginning and you won't need to worry about common attacks or vulnerabilities. An independent section within Hepsia will permit you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records info about intrusions, but doesn't take actions to prevent them. What you shall see in the logs shall enable you to to secure your websites better - the IP an attack came from, what website was attacked and in what way, what ModSecurity rule was triggered, and so forth. With this data, you could see whether an Internet site needs an update, whether you ought to block IPs from accessing your web server, etcetera. Besides the third-party commercial security rules for ModSecurity which we use, our administrators include custom ones as well when they discover a new threat which is not yet included in the commercial bundle.