ModSecurity is an effective firewall for Apache web servers which is employed to prevent attacks toward web applications. It keeps track of the HTTP traffic to a specific site in real time and stops any intrusion attempts as soon as it discovers them. The firewall relies on a set of rules to do that - for example, trying to log in to a script admin area unsuccessfully many times activates one rule, sending a request to execute a certain file that could result in getting access to the site triggers a different rule, and so on. ModSecurity is amongst the best firewalls out there and it'll secure even scripts that are not updated frequently as it can prevent attackers from using known exploits and security holes. Very comprehensive data about every single intrusion attempt is recorded and the logs the firewall maintains are considerably more comprehensive than the conventional logs provided by the Apache server, so you can later analyze them and decide whether you need to take extra measures in order to improve the security of your script-driven sites.
ModSecurity in Cloud Hosting
ModSecurity comes standard with all cloud hosting plans that we provide and it shall be switched on automatically for any domain or subdomain you add/create in your Hepsia hosting CP. The firewall has 3 different modes, so you could activate and deactivate it with just a click or set it to detection mode, so it shall maintain a log of all attacks, but it'll not do anything to stop them. The log for any of your Internet sites will feature elaborate info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, etcetera. The firewall rules which we use are regularly updated and incorporate both commercial ones that we get from a third-party security business and custom ones which our system administrators include in the event that they detect a new type of attacks. This way, the websites you host here shall be far more secure without any action expected on your end.
ModSecurity in Semi-dedicated Hosting
We've integrated ModSecurity by default inside all semi-dedicated hosting plans, so your web applications shall be protected as soon as you set them up under any domain or subdomain. The Hepsia CP that comes with the semi-dedicated accounts shall permit you to activate or disable the firewall for any site with a mouse click. You will also be able to activate a passive detection mode with which ModSecurity will keep a log of possible attacks without really preventing them. The detailed logs include the nature of the attack and what ModSecurity response this attack initiated, where it originated from, and so forth. The list of rules which we use is constantly updated as to match any new risks which could appear on the Internet and it includes both commercial rules that we get from a security firm and custom-written ones which our administrators include if they find a threat that is not present within the commercial list yet.
ModSecurity in Dedicated Hosting
ModSecurity comes with all dedicated servers which are integrated with our Hepsia CP and you will not have to do anything specific on your end to use it because it is enabled by default every time you add a new domain or subdomain on your server. In case it interferes with any of your applications, you shall be able to stop it through the respective section of Hepsia, or you can leave it working in passive mode, so it will identify attacks and will still maintain a log for them, but will not block them. You'll be able to look at the logs later to determine what you can do to improve the safety of your sites since you will find info such as where an intrusion attempt came from, what site was attacked and based upon what rule ModSecurity reacted, and so on. The rules that we use are commercial, therefore they are constantly updated by a security company, but to be on the safe side, our staff also add custom rules every now and then in order to deal with any new threats they have found.