ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its overall performance and when it detects an intrusion attempt, it blocks it. The firewall also keeps a more detailed log for the site visitors than any web server does, so you will be able to keep an eye on what's happening with your websites better than if you rely only on conventional logs. ModSecurity works with security rules based on which it stops attacks. For instance, it identifies if somebody is attempting to log in to the admin area of a given script a number of times or if a request is sent to execute a file with a specific command. In such situations these attempts set off the corresponding rules and the firewall program hinders the attempts right away, and then records detailed details about them in its logs. ModSecurity is among the very best software firewalls available and it can easily protect your web applications against many threats and vulnerabilities, particularly in case you don’t update them or their plugins frequently.
ModSecurity in Cloud Website Hosting
ModSecurity is available on all cloud website hosting servers, so when you choose to host your Internet sites with our business, they shall be protected against a wide range of attacks. The firewall is turned on by default for all domains and subdomains, so there'll be nothing you'll need to do on your end. You shall be able to stop ModSecurity for any website if required, or to enable a detection mode, so that all activity shall be recorded, but the firewall shall not take any real action. You will be able to view specific logs via your Hepsia Control Panel including the IP where the attack originated from, what the attacker planned to do and how ModSecurity dealt with the threat. As we take the security of our customers' sites seriously, we use a collection of commercial rules that we get from one of the best companies that maintain this kind of rules. Our admins also include custom rules to make sure that your sites will be resistant to as many threats as possible.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting plans that we offer feature ModSecurity and because the firewall is switched on by default, any site you set up under a domain or a subdomain will be protected right away. An independent section in the Hepsia CP which comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll allow you to start and stop the firewall for any Internet site or activate a detection mode. With the last option, ModSecurity won't take any action, but it will still detect possible attacks and will keep all info in a log as if it were completely active. The logs can be found within the exact same section of the CP and they include info about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to recognize and stop it, and so on. The security rules that we use on our machines are a mix of commercial ones from a security business and custom ones developed by our system admins. For that reason, we provide greater security for your web apps as we can protect them from attacks even before security companies release updates for new threats.
ModSecurity in Dedicated Hosting
ModSecurity is included with all dedicated servers that are set up with our Hepsia Control Panel and you'll not have to do anything specific on your end to use it as it's enabled by default each time you add a new domain or subdomain on your hosting server. If it disrupts any of your applications, you'll be able to stop it through the respective part of Hepsia, or you can leave it operating in passive mode, so it will recognize attacks and shall still keep a log for them, but won't prevent them. You could look at the logs later to find out what you can do to increase the security of your websites since you shall find details such as where an intrusion attempt originated from, what Internet site was attacked and based on what rule ModSecurity responded, and so forth. The rules we use are commercial, therefore they're regularly updated by a security company, but to be on the safe side, our admins also add custom rules occasionally in order to respond to any new threats they have identified.