ModSecurity is an efficient firewall for Apache web servers that is employed to prevent attacks toward web apps. It monitors the HTTP traffic to a given website in real time and prevents any intrusion attempts as soon as it discovers them. The firewall relies on a set of rules to do that - as an illustration, attempting to log in to a script administration area without success several times triggers one rule, sending a request to execute a particular file which may result in getting access to the Internet site triggers a different rule, etcetera. ModSecurity is one of the best firewalls available on the market and it'll preserve even scripts which aren't updated regularly since it can prevent attackers from using known exploits and security holes. Very thorough data about each intrusion attempt is recorded and the logs the firewall keeps are much more specific than the regular logs provided by the Apache server, so you could later analyze them and decide whether you need to take extra measures so as to boost the safety of your script-driven websites.
ModSecurity in Cloud Website Hosting
ModSecurity is available with every cloud website hosting package which we provide and it is activated by default for every domain or subdomain which you include through your Hepsia Control Panel. If it interferes with any of your applications or you would like to disable it for some reason, you'll be able to accomplish that through the ModSecurity section of Hepsia with just a mouse click. You may also enable a passive mode, so the firewall will recognize potential attacks and keep a log, but shall not take any action. You could see detailed logs in the same section, including the IP address where the attack came from, what exactly the attacker tried to do and at what time, what ModSecurity did, and so forth. For maximum safety of our clients we use a group of commercial firewall rules combined with custom ones that are included by our system administrators.
ModSecurity in Semi-dedicated Hosting
ModSecurity is a part of our semi-dedicated hosting solutions and if you opt to host your sites with us, there shall not be anything special you'll have to do since the firewall is switched on by default for all domains and subdomains which you include through your hosting Control Panel. If necessary, you'll be able to disable ModSecurity for a certain website or switch on the so-called detection mode in which case the firewall will still work and record info, but will not do anything to stop possible attacks on your websites. Comprehensive logs shall be accessible in your CP and you'll be able to see which kind of attacks occurred, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks came from, and so on. We employ two kinds of rules on our servers - commercial ones from a firm which operates in the field of web security, and customized ones which our administrators occasionally add to respond to newly identified threats on time.
ModSecurity in Dedicated Hosting
When you choose to host your sites on a dedicated server with the Hepsia CP, your web apps shall be secured straight away as ModSecurity is provided with all Hepsia-based packages. You shall be able to manage the firewall with ease and if needed, you'll be able to turn it off or switch on its passive mode when it will only keep a log of what's happening without taking any action to prevent possible attacks. The logs which you will find inside the exact same section of the CP are really detailed and include info about the attacker IP, what site and file were attacked and in what way, what rule the firewall employed to stop the intrusion, and so on. This info shall allow you to take measures and improve the protection of your Internet sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our staff include whenever they identify attacks which haven't yet been included within the commercial pack.