ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its overall performance and when it identifies an intrusion attempt, it blocks it. The firewall also maintains a more thorough log for the traffic than any web server does, so you'll manage to keep an eye on what is happening with your websites a lot better than if you rely only on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For example, it recognizes if somebody is attempting to log in to the admin area of a certain script a number of times or if a request is sent to execute a file with a particular command. In such cases these attempts set off the corresponding rules and the firewall hinders the attempts immediately, then records comprehensive details about them within its logs. ModSecurity is amongst the best software firewalls on the market and it can protect your web apps against a huge number of threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.
ModSecurity in Shared Hosting
ModSecurity can be found with each shared hosting solution that we provide and it's turned on by default for every domain or subdomain that you include through your Hepsia CP. In the event that it disrupts any of your applications or you would like to disable it for any reason, you will be able to achieve that through the ModSecurity area of Hepsia with simply a click. You can also use a passive mode, so the firewall will discover potential attacks and maintain a log, but won't take any action. You can view extensive logs in the exact same section, including the IP address where the attack originated from, what exactly the attacker tried to do and at what time, what ModSecurity did, etcetera. For optimum security of our clients we use a set of commercial firewall rules blended with custom ones that are provided by our system administrators.
ModSecurity in Semi-dedicated Hosting
Any web program which you install in your new semi-dedicated hosting account shall be protected by ModSecurity because the firewall is included with all our hosting packages and is activated by default for any domain and subdomain you include or create through your Hepsia hosting CP. You shall be able to manage ModSecurity via a dedicated section in Hepsia where not simply can you activate or deactivate it entirely, but you may also activate a passive mode, so the firewall shall not block anything, but it shall still keep a record of possible attacks. This requires just a click and you will be able to view the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was dealt with, and so on. The firewall uses two groups of rules on our machines - a commercial one which we get from a third-party web security provider and a custom one which our administrators update personally in order to respond to recently discovered risks at the earliest opportunity.
ModSecurity in Dedicated Servers Hosting
All our dedicated servers that are set up with the Hepsia hosting CP feature ModSecurity, so any program you upload or install shall be properly secured from the very beginning and you'll not have to stress about common attacks or vulnerabilities. A separate section inside Hepsia will permit you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records information regarding intrusions, but does not take actions to stop them. What you shall see in the logs can easily enable you to to secure your sites better - the IP address an attack originated from, what site was attacked as well as how, what ModSecurity rule was triggered, etc. With this info, you can see whether a website needs an update, if you need to block IPs from accessing your web server, and so forth. On top of the third-party commercial security rules for ModSecurity we use, our administrators add custom ones as well when they come across a new threat that is not yet in the commercial bundle.