ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its overall performance and if it detects an intrusion attempt, it blocks it. The firewall also maintains a more detailed log for the website visitors than any web server does, so you'll be able to monitor what's going on with your Internet sites a lot better than if you rely simply on standard logs. ModSecurity uses security rules based on which it stops attacks. For instance, it identifies whether someone is trying to log in to the administrator area of a specific script a number of times or if a request is sent to execute a file with a specific command. In these cases these attempts set off the corresponding rules and the firewall blocks the attempts immediately, after that records in-depth info about them in its logs. ModSecurity is among the very best software firewalls on the market and it can protect your web apps against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.
ModSecurity in Cloud Website Hosting
ModSecurity comes standard with all cloud website hosting plans that we offer and it will be switched on automatically for any domain or subdomain that you add/create in your Hepsia hosting Control Panel. The firewall has three different modes, so you'll be able to switch on and disable it with a mouse click or set it to detection mode, so it'll keep a log of all attacks, but it will not do anything to stop them. The log for each of your sites will include detailed information such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules which we use are constantly updated and comprise of both commercial ones which we get from a third-party security company and custom ones our system administrators include in case that they detect a new sort of attacks. This way, the Internet sites that you host here will be way more secure without any action expected on your end.
ModSecurity in VPS Web Hosting
All virtual private servers that are set up with the Hepsia Control Panel include ModSecurity. The firewall is set up and switched on by default for all domains which are hosted on the server, so there will not be anything special which you shall have to do to protect your websites. It will take you just a mouse click to stop ModSecurity if required or to switch on its passive mode so that it records what happens without taking any measures to prevent intrusions. You shall be able to view the logs generated in passive or active mode through the corresponding section of Hepsia and learn more about the type of the attack, where it came from, what rule the firewall employed to deal with it, etc. We employ a mixture of commercial and custom rules in order to make sure that ModSecurity will stop as many risks as possible, consequently improving the security of your web programs as much as possible.