ModSecurity is a powerful firewall for Apache web servers that is employed to prevent attacks towards web applications. It monitors the HTTP traffic to a given Internet site in real time and blocks any intrusion attempts the moment it discovers them. The firewall relies on a set of rules to accomplish that - for example, attempting to log in to a script administrator area unsuccessfully many times triggers one rule, sending a request to execute a certain file which may result in accessing the Internet site triggers another rule, and so on. ModSecurity is one of the best firewalls on the market and it will secure even scripts that aren't updated often since it can prevent attackers from using known exploits and security holes. Quite comprehensive info about each intrusion attempt is recorded and the logs the firewall keeps are much more detailed than the standard logs provided by the Apache server, so you may later examine them and determine if you need to take extra measures in order to enhance the protection of your script-driven Internet sites.
ModSecurity in Website Hosting
We provide ModSecurity with all website hosting plans, so your Internet apps will be protected against malicious attacks. The firewall is turned on by default for all domains and subdomains, but in case you would like, you'll be able to stop it using the respective part of your Hepsia CP. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs which you will discover in Hepsia are quite detailed and include data about the nature of any attack, when it transpired and from what IP address, the firewall rule which was triggered, and so on. We use a group of commercial rules which are often updated, but sometimes our administrators include custom rules as well so as to efficiently protect the Internet sites hosted on our servers.
ModSecurity in Dedicated Web Hosting
All of our dedicated servers which are set up with the Hepsia hosting Control Panel come with ModSecurity, so any program you upload or set up will be protected from the very beginning and you will not need to bother about common attacks or vulnerabilities. An independent section in Hepsia will enable you to start or stop the firewall for every domain or subdomain, or switch on a detection mode so that it records details about intrusions, but doesn't take actions to stop them. What you will find in the logs can easily help you to secure your websites better - the IP address an attack originated from, what site was attacked and how, what ModSecurity rule was triggered, etc. With this information, you'll be able to see whether a website needs an update, whether you ought to block IPs from accessing your web server, etcetera. In addition to the third-party commercial security rules for ModSecurity that we use, our admins add custom ones too when they discover a new threat that's not yet a part of the commercial bundle.