ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It's employed to prevent attacks toward script-driven Internet sites through the use of security rules which contain certain expressions. That way, the firewall can stop hacking and spamming attempts and shield even sites which are not updated regularly. As an example, a number of failed login attempts to a script administrative area or attempts to execute a specific file with the objective to get access to the script shall trigger specific rules, so ModSecurity shall stop these activities the second it detects them. The firewall is incredibly efficient as it tracks the entire HTTP traffic to an Internet site in real time without slowing it down, so it can easily prevent an attack before any damage is done. It additionally maintains an incredibly comprehensive log of all attack attempts which features more info than standard Apache logs, so you could later examine the data and take further measures to improve the security of your sites if necessary.
ModSecurity in Cloud Web Hosting
ModSecurity is supplied with all cloud web hosting servers, so when you decide to host your Internet sites with our firm, they shall be shielded from a wide array of attacks. The firewall is turned on as standard for all domains and subdomains, so there'll be nothing you shall need to do on your end. You shall be able to stop ModSecurity for any site if necessary, or to enable a detection mode, so all activity shall be recorded, but the firewall shall not take any real action. You will be able to view detailed logs from your Hepsia CP including the IP where the attack came from, what the attacker wished to do and how ModSecurity dealt with the threat. Since we take the protection of our customers' websites seriously, we use a group of commercial rules that we get from one of the top companies which maintain such rules. Our administrators also add custom rules to ensure that your websites will be resistant to as many threats as possible.
ModSecurity in Semi-dedicated Hosting
Any web app which you install within your new semi-dedicated hosting account will be protected by ModSecurity since the firewall is included with all our hosting plans and is activated by default for any domain and subdomain that you add or create through your Hepsia hosting CP. You shall be able to manage ModSecurity through a dedicated section in Hepsia where not simply can you activate or deactivate it completely, but you may also activate a passive mode, so the firewall won't stop anything, but it will still maintain an archive of potential attacks. This requires simply a click and you will be able to see the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was addressed, etc. The firewall uses two groups of rules on our web servers - a commercial one which we get from a third-party web security provider and a custom one that our admins update manually as to respond to newly discovered threats immediately.
ModSecurity in Dedicated Web Hosting
When you opt to host your websites on a dedicated server with the Hepsia Control Panel, your web applications will be secured immediately as ModSecurity is available with all Hepsia-based plans. You shall be able to control the firewall without difficulty and if necessary, you shall be able to turn it off or switch on its passive mode when it'll only maintain a log of what is occurring without taking any action to prevent potential attacks. The logs which you can find in the very same section of the CP are incredibly detailed and contain data about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, etcetera. This info shall permit you to take measures and improve the protection of your websites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones that our admins include whenever they identify attacks which haven't yet been included in the commercial pack.