ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its functionality and if it detects an intrusion attempt, it blocks it. The firewall additionally maintains a more detailed log for the website visitors than any server does, so you shall be able to monitor what's happening with your Internet sites better than if you rely only on conventional logs. ModSecurity works with security rules based on which it helps prevent attacks. For example, it detects if anyone is trying to log in to the admin area of a particular script several times or if a request is sent to execute a file with a particular command. In such situations these attempts set off the corresponding rules and the firewall program blocks the attempts right away, then records detailed info about them within its logs. ModSecurity is amongst the best software firewalls available and it can easily protect your web applications against a large number of threats and vulnerabilities, particularly if you don’t update them or their plugins regularly.
ModSecurity in Hosting
ModSecurity is supplied with all hosting servers, so when you choose to host your websites with our firm, they'll be shielded from a wide range of attacks. The firewall is turned on as standard for all domains and subdomains, so there shall be nothing you will need to do on your end. You'll be able to stop ModSecurity for any Internet site if necessary, or to activate a detection mode, so all activity shall be recorded, but the firewall won't take any real action. You will be able to view specific logs through your Hepsia Control Panel including the IP where the attack originated from, what the attacker wanted to do and how ModSecurity addressed the threat. Since we take the security of our customers' websites very seriously, we employ a selection of commercial rules which we take from one of the leading companies that maintain this type of rules. Our admins also include custom rules to make sure that your sites will be protected against as many risks as possible.
ModSecurity in Dedicated Servers Hosting
All our dedicated servers which are set up with the Hepsia hosting Control Panel come with ModSecurity, so any program which you upload or set up will be properly secured from the very beginning and you won't need to bother about common attacks or vulnerabilities. An independent section within Hepsia will permit you to start or stop the firewall for every domain or subdomain, or switch on a detection mode so that it records details about intrusions, but doesn't take actions to prevent them. What you'll find in the logs can easily allow you to to secure your Internet sites better - the IP an attack came from, what site was attacked as well as how, what ModSecurity rule was triggered, etc. With this data, you'll be able to see whether a site needs an update, whether you need to block IPs from accessing your web server, etc. Aside from the third-party commercial security rules for ModSecurity which we use, our admins add custom ones as well whenever they find a new threat that's not yet included in the commercial bundle.