ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It's employed to prevent attacks against script-driven websites through the use of security rules that contain particular expressions. That way, the firewall can prevent hacking and spamming attempts and protect even websites which aren't updated regularly. For instance, several failed login attempts to a script admin area or attempts to execute a specific file with the intention to get access to the script shall trigger certain rules, so ModSecurity will stop these activities the moment it identifies them. The firewall is quite efficient since it screens the entire HTTP traffic to a site in real time without slowing it down, so it can stop an attack before any harm is done. It also keeps a very detailed log of all attack attempts which features more information than standard Apache logs, so you could later check out the data and take further measures to boost the security of your sites if necessary.
ModSecurity in Hosting
ModSecurity is available on all hosting servers, so if you choose to host your Internet sites with our organization, they will be protected against a wide range of attacks. The firewall is enabled by default for all domains and subdomains, so there will be nothing you'll need to do on your end. You will be able to stop ModSecurity for any website if required, or to enable a detection mode, so that all activity shall be recorded, but the firewall shall not take any real action. You'll be able to view specific logs via your Hepsia Control Panel including the IP address where the attack originated from, what the attacker planned to do and how ModSecurity handled the threat. Since we take the protection of our clients' Internet sites very seriously, we employ a group of commercial rules which we get from one of the top firms that maintain this sort of rules. Our administrators also include custom rules to make sure that your sites shall be shielded from as many risks as possible.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting plans that we offer come with ModSecurity and because the firewall is turned on by default, any website which you set up under a domain or a subdomain will be secured straight away. An individual section within the Hepsia Control Panel that comes with the semi-dedicated accounts is devoted to ModSecurity and it shall enable you to start and stop the firewall for any website or activate a detection mode. With the last mentioned, ModSecurity will not take any action, but it'll still recognize possible attacks and shall keep all info in a log as if it were fully active. The logs could be found inside the exact same section of the CP and they feature info about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to recognize and stop it, and so on. The security rules that we use on our servers are a mix of commercial ones from a security business and custom ones developed by our system admins. Consequently, we provide higher security for your web applications as we can shield them from attacks before security corporations release updates for new threats.
ModSecurity in Dedicated Hosting
ModSecurity comes with all dedicated servers that are integrated with our Hepsia Control Panel and you won't have to do anything specific on your end to use it since it is switched on by default each time you add a new domain or subdomain on your web server. In case it interferes with some of your programs, you will be able to stop it through the respective section of Hepsia, or you can leave it working in passive mode, so it'll detect attacks and shall still maintain a log for them, but shall not prevent them. You'll be able to analyze the logs later to learn what you can do to enhance the protection of your websites since you'll find details such as where an intrusion attempt came from, what Internet site was attacked and based on what rule ModSecurity responded, etcetera. The rules which we employ are commercial, thus they are frequently updated by a security provider, but to be on the safe side, our staff also add custom rules once in a while in order to react to any new threats they have found.