ModSecurity is a highly effective firewall for Apache web servers which is used to stop attacks toward web applications. It monitors the HTTP traffic to a certain site in real time and prevents any intrusion attempts the moment it identifies them. The firewall relies on a set of rules to do this - for instance, trying to log in to a script admin area without success many times activates one rule, sending a request to execute a specific file which may result in accessing the Internet site triggers a different rule, etc. ModSecurity is one of the best firewalls available on the market and it'll preserve even scripts which are not updated regularly because it can prevent attackers from using known exploits and security holes. Very detailed information about every intrusion attempt is recorded and the logs the firewall maintains are far more specific than the standard logs provided by the Apache server, so you may later analyze them and determine whether you need to take additional measures in order to improve the safety of your script-driven websites.
ModSecurity in Cloud Hosting
ModSecurity is available on all cloud hosting
servers, so if you choose to host your sites with our company, they will be shielded from a wide array of attacks. The firewall is turned on as standard for all domains and subdomains, so there'll be nothing you'll need to do on your end. You shall be able to stop ModSecurity for any Internet site if necessary, or to enable a detection mode, so that all activity shall be recorded, but the firewall will not take any real action. You'll be able to view specific logs from your Hepsia CP including the IP where the attack originated from, what the attacker wished to do and how ModSecurity addressed the threat. Since we take the safety of our clients' websites seriously, we employ a selection of commercial rules that we get from one of the best companies that maintain this kind of rules. Our administrators also include custom rules to make certain that your Internet sites shall be resistant to as many threats as possible.
ModSecurity in Semi-dedicated Servers
We've integrated ModSecurity by default in all semi-dedicated server
products, so your web applications shall be protected whenever you install them under any domain or subdomain. The Hepsia Control Panel which comes with the semi-dedicated accounts shall permit you to enable or turn off the firewall for any website with a mouse click. You'll also have the ability to turn on a passive detection mode through which ModSecurity shall keep a log of potential attacks without really stopping them. The comprehensive logs include things like the nature of the attack and what ModSecurity response this attack activated, where it originated from, and so forth. The list of rules that we employ is regularly updated as to match any new threats which might appear on the Internet and it includes both commercial rules that we get from a security company and custom-written ones which our admins include in the event that they find a threat that's not present within the commercial list yet.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers
which are set up with the Hepsia hosting Control Panel, so your web applications will be protected from the instant your server is in a position. The firewall is activated by default for any domain or subdomain on the VPS, but if necessary, you can disable it with a mouse click from the corresponding section of Hepsia. You may also set it to function in detection mode, so it will keep an extensive log of any possible attacks without taking any action to stop them. The logs can be found within the very same section and include details about the nature of the attack, what IP address it came from and what ModSecurity rule was activated to stop it. For optimum security, we employ not only commercial rules from a business working in the field of web security, but also custom ones our admins add personally so as to respond to new risks that are still not addressed in the commercial rules.
ModSecurity in Dedicated Servers
When you choose to host your websites on a dedicated server
with the Hepsia Control Panel, your web programs will be protected right from the start since ModSecurity is supplied with all Hepsia-based solutions. You'll be able to manage the firewall effortlessly and if necessary, you shall be able to turn it off or activate its passive mode when it will only maintain a log of what's going on without taking any action to prevent potential attacks. The logs which you'll find inside the very same section of the Control Panel are extremely detailed and include information about the attacker IP address, what site and file were attacked and in what way, what rule the firewall employed to stop the intrusion, etc. This information shall enable you to take measures and enhance the protection of your sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones that our staff include when they detect attacks which have not yet been included in the commercial pack.