ModSecurity is a plugin for Apache web servers that functions as a web app layer firewall. It's employed to stop attacks against script-driven sites by using security rules that contain particular expressions. In this way, the firewall can prevent hacking and spamming attempts and shield even websites that aren't updated often. For instance, several unsuccessful login attempts to a script administrator area or attempts to execute a certain file with the objective to get access to the script shall trigger specific rules, so ModSecurity will block these activities the minute it identifies them. The firewall is very efficient because it monitors the entire HTTP traffic to a website in real time without slowing it down, so it can stop an attack before any damage is done. It additionally maintains an exceptionally comprehensive log of all attack attempts which includes more info than standard Apache logs, so you can later check out the data and take further measures to improve the security of your Internet sites if needed.
ModSecurity in Cloud Web Hosting
ModSecurity is supplied with all cloud web hosting servers, so when you choose to host your websites with our organization, they'll be protected against a wide range of attacks. The firewall is turned on as standard for all domains and subdomains, so there'll be nothing you will need to do on your end. You will be able to stop ModSecurity for any site if necessary, or to switch on a detection mode, so that all activity will be recorded, but the firewall shall not take any real action. You will be able to view specific logs via your Hepsia Control Panel including the IP where the attack originated from, what the attacker wished to do and how ModSecurity dealt with the threat. Since we take the safety of our clients' sites very seriously, we use a group of commercial rules that we take from one of the top companies that maintain this kind of rules. Our administrators also add custom rules to make certain that your sites shall be resistant to as many risks as possible.
ModSecurity in Semi-dedicated Hosting
We have integrated ModSecurity by default in all semi-dedicated hosting plans, so your web apps will be protected the instant you set them up under any domain or subdomain. The Hepsia CP that is included with the semi-dedicated accounts shall allow you to switch on or turn off the firewall for any website with a click. You'll also have the ability to switch on a passive detection mode in which ModSecurity will keep a log of possible attacks without really stopping them. The thorough logs contain the nature of the attack and what ModSecurity response that attack generated, where it originated from, and so on. The list of rules we employ is constantly updated as to match any new risks which may appear on the Internet and it features both commercial rules that we get from a security company and custom-written ones which our admins include in case they discover a threat that's not present inside the commercial list yet.
ModSecurity in VPS Web Hosting
ModSecurity is provided with all Hepsia-based virtual private servers which we offer and it'll be activated automatically for every new domain or subdomain which you add on the machine. That way, any web app that you install shall be secured right from the start without doing anything personally on your end. The firewall can be handled via the section of the CP that has the same name. This is the location in whichyou'll be able to switch off ModSecurity or activate its passive mode, so it won't take any action toward threats, but will still maintain a thorough log. The recorded information is available inside the same section as well and you will be able to see what IPs any attacks originated from to enable you to block them, what the nature of the attempted attacks was and based on what security rules ModSecurity reacted. The rules we use on our servers are a mixture between commercial ones which we get from a security company and custom ones that are included by our staff to enhance the security of any web applications hosted on our end.
ModSecurity in Dedicated Servers Hosting
ModSecurity is provided by default with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain which you host or subdomain that you create on the server. In case that a web application doesn't function correctly, you could either switch off the firewall or set it to operate in passive mode. The latter means that ModSecurity will maintain a log of any possible attack which may happen, but will not take any action to stop it. The logs generated in passive or active mode will give you additional details about the exact file which was attacked, the type of the attack and the IP it came from, etc. This information shall permit you to determine what measures you can take to enhance the protection of your Internet sites, such as blocking IPs or performing script and plugin updates. The ModSecurity rules we employ are updated frequently with a commercial bundle from a third-party security firm we work with, but sometimes our admins add their own rules also if they discover a new potential threat.