ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its overall performance and in case it discovers an intrusion attempt, it prevents it. The firewall also keeps a more thorough log for the website visitors than any server does, so you shall manage to keep track of what is happening with your websites much better than if you rely only on standard logs. ModSecurity works with security rules based on which it prevents attacks. For example, it identifies whether anyone is attempting to log in to the administration area of a certain script a number of times or if a request is sent to execute a file with a particular command. In these cases these attempts set off the corresponding rules and the firewall blocks the attempts instantly, then records detailed info about them within its logs. ModSecurity is one of the best software firewalls on the market and it could easily protect your web applications against thousands of threats and vulnerabilities, particularly if you don’t update them or their plugins regularly.
ModSecurity in Shared Hosting
ModSecurity is available on all shared hosting web servers, so when you opt to host your sites with our organization, they shall be resistant to an array of attacks. The firewall is turned on as standard for all domains and subdomains, so there'll be nothing you'll have to do on your end. You'll be able to stop ModSecurity for any Internet site if required, or to activate a detection mode, so that all activity shall be recorded, but the firewall shall not take any real action. You'll be able to view comprehensive logs through your Hepsia CP including the IP where the attack came from, what the attacker wanted to do and how ModSecurity dealt with the threat. As we take the protection of our customers' sites very seriously, we employ a set of commercial rules that we take from one of the best companies that maintain this sort of rules. Our administrators also add custom rules to make certain that your sites will be protected against as many risks as possible.
ModSecurity in Dedicated Web Hosting
ModSecurity is offered as standard with all dedicated servers that are set up with the Hepsia CP and is set to “Active” automatically for any domain which you host or subdomain which you create on the hosting server. Just in case that a web application doesn't work adequately, you could either turn off the firewall or set it to work in passive mode. The latter means that ModSecurity will keep a log of any potential attack which could happen, but will not take any action to prevent it. The logs created in passive or active mode shall present you with additional details about the exact file that was attacked, the nature of the attack and the IP address it originated from, and so forth. This data will allow you to determine what actions you can take to boost the security of your Internet sites, such as blocking IPs or performing script and plugin updates. The ModSecurity rules we use are updated constantly with a commercial pack from a third-party security provider we work with, but occasionally our administrators include their own rules too in case they discover a new potential threat.