Discover what ModSecurity actually is, what it does and just what it does to guard your sites and web apps.
ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It's employed to prevent attacks against script-driven websites by employing security rules which contain specific expressions. In this way, the firewall can block hacking and spamming attempts and preserve even sites that aren't updated frequently. For instance, multiple failed login attempts to a script admin area or attempts to execute a particular file with the purpose to get access to the script shall trigger certain rules, so ModSecurity will stop these activities the minute it discovers them. The firewall is extremely efficient because it screens the entire HTTP traffic to a site in real time without slowing it down, so it will be able to prevent an attack before any damage is done. It additionally maintains a very thorough log of all attack attempts that contains more info than traditional Apache logs, so you could later analyze the data and take further measures to improve the security of your sites if needed.
ModSecurity in Shared Web Hosting
ModSecurity comes standard with all shared web hosting
packages that we provide and it shall be turned on automatically for any domain or subdomain that you add/create in your Hepsia hosting CP. The firewall has 3 different modes, so you'll be able to switch on and disable it with simply a mouse click or set it to detection mode, so it will maintain a log of all attacks, but it shall not do anything to prevent them. The log for each of your websites will include comprehensive info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules that we use are regularly updated and include both commercial ones which we get from a third-party security company and custom ones which our system administrators add in case that they detect a new kind of attacks. This way, the sites which you host here shall be far more secure with no action expected on your end.
ModSecurity in Semi-dedicated Hosting
Any web application that you install within your new semi-dedicated hosting
account shall be protected by ModSecurity since the firewall comes with all our hosting solutions and is turned on by default for any domain and subdomain that you include or create via your Hepsia hosting CP. You'll be able to manage ModSecurity via a dedicated section in Hepsia where not only can you activate or deactivate it entirely, but you may also enable a passive mode, so the firewall shall not block anything, but it will still maintain an archive of possible attacks. This normally requires only a mouse click and you'll be able to look at the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was dealt with, and so forth. The firewall uses two groups of rules on our servers - a commercial one that we get from a third-party web security provider and a custom one that our admins update manually as to respond to recently discovered risks as quickly as possible.
ModSecurity in VPS Web Hosting
ModSecurity comes with all Hepsia-based virtual private servers
we offer and it'll be activated automatically for every new domain or subdomain you add on the web server. That way, any web application which you install will be protected right away without doing anything personally on your end. The firewall may be managed from the section of the CP which bears the same name. This is the location in whichyou could switch off ModSecurity or activate its passive mode, so it won't take any action toward threats, but will still keep a detailed log. The recorded information is available within the same section as well and you'll be able to see what IPs any attacks came from so that you block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity reacted. The rules that we use on our servers are a blend between commercial ones that we get from a security firm and custom ones that are added by our administrators to maximize the security of any web applications hosted on our end.
ModSecurity in Dedicated Servers Hosting
ModSecurity is included with all dedicated servers
that are integrated with our Hepsia Control Panel and you won't have to do anything specific on your end to use it because it's enabled by default each time you include a new domain or subdomain on your server. In case it interferes with some of your programs, you will be able to stop it through the respective section of Hepsia, or you could leave it working in passive mode, so it shall identify attacks and shall still maintain a log for them, but will not block them. You may look at the logs later to learn what you can do to increase the protection of your sites as you will find details such as where an intrusion attempt came from, what site was attacked and in accordance with what rule ModSecurity reacted, etcetera. The rules that we employ are commercial, thus they're frequently updated by a security provider, but to be on the safe side, our staff also include custom rules from time to time as to deal with any new threats they have identified.