ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its functionality and in case it discovers an intrusion attempt, it prevents it. The firewall additionally keeps a more detailed log for the traffic than any server does, so you'll manage to keep track of what is going on with your websites a lot better than if you rely simply on standard logs. ModSecurity works with security rules based on which it prevents attacks. For instance, it recognizes whether someone is attempting to log in to the administrator area of a particular script multiple times or if a request is sent to execute a file with a particular command. In these instances these attempts trigger the corresponding rules and the firewall program blocks the attempts right away, and then records in-depth details about them in its logs. ModSecurity is among the most effective software firewalls available and it could easily protect your web apps against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.
ModSecurity in Shared Web Hosting
We provide ModSecurity with all shared web hosting packages, so your Internet apps will be shielded from malicious attacks. The firewall is turned on as standard for all domains and subdomains, but in case you would like, you'll be able to stop it through the respective part of your Hepsia CP. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs which you'll discover in Hepsia are very detailed and offer info about the nature of any attack, when it took place and from what IP, the firewall rule that was triggered, etc. We employ a range of commercial rules that are frequently updated, but sometimes our administrators add custom rules as well in order to efficiently protect the sites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
ModSecurity is a part of our semi-dedicated hosting plans and if you choose to host your sites with our company, there won't be anything special you'll need to do given that the firewall is activated by default for all domains and subdomains you add via your hosting CP. If needed, you can disable ModSecurity for a certain Internet site or switch on the so-called detection mode in which case the firewall will still work and record information, but shall not do anything to stop possible attacks on your websites. Thorough logs will be available in your Control Panel and you shall be able to see what sort of attacks occurred, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, and so forth. We employ 2 types of rules on our servers - commercial ones from a business that operates in the field of web security, and customized ones which our admins often add to respond to newly discovered threats in a timely manner.
ModSecurity in Dedicated Servers Hosting
ModSecurity comes with all dedicated servers that are set up with our Hepsia CP and you won't need to do anything specific on your end to employ it since it's turned on by default every time you include a new domain or subdomain on your hosting server. If it disrupts any of your programs, you will be able to stop it through the respective area of Hepsia, or you could leave it operating in passive mode, so it will recognize attacks and shall still keep a log for them, but will not stop them. You may analyze the logs later to learn what you can do to increase the protection of your Internet sites as you will find information such as where an intrusion attempt came from, what website was attacked and in accordance with what rule ModSecurity reacted, and so forth. The rules that we use are commercial, thus they're frequently updated by a security firm, but to be on the safe side, our admins also add custom rules occasionally in order to respond to any new threats they have found.