ModSecurity
Discover what ModSecurity is, how it functions and precisely what it does so as to protect your web sites and applications.
ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its operation and in case it identifies an intrusion attempt, it blocks it. The firewall furthermore maintains a more detailed log for the site visitors than any web server does, so you shall be able to keep an eye on what's happening with your sites better than if you rely simply on conventional logs. ModSecurity uses security rules based on which it stops attacks. For instance, it recognizes whether somebody is attempting to log in to the administration area of a particular script several times or if a request is sent to execute a file with a particular command. In these situations these attempts trigger the corresponding rules and the firewall program blocks the attempts immediately, after that records detailed details about them inside its logs. ModSecurity is amongst the most effective software firewalls out there and it could easily protect your web applications against a huge number of threats and vulnerabilities, particularly if you don’t update them or their plugins frequently.
-
ModSecurity in Cloud Website Hosting
ModSecurity comes by default with all
cloud website hosting packages that we provide and it will be turned on automatically for any domain or subdomain that you add/create in your Hepsia hosting Control Panel. The firewall has 3 different modes, so you could switch on and deactivate it with only a mouse click or set it to detection mode, so it shall keep a log of all attacks, but it shall not do anything to prevent them. The log for any of your Internet sites shall include comprehensive info including the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules that we use are constantly updated and include both commercial ones that we get from a third-party security company and custom ones that our system admins add in case that they detect a new kind of attacks. This way, the Internet sites which you host here shall be way more secure with no action required on your end.
-
ModSecurity in Semi-dedicated Hosting
ModSecurity is part of our
semi-dedicated hosting solutions and if you decide to host your Internet sites with our company, there will not be anything special you'll have to do given that the firewall is switched on by default for all domains and subdomains you include using your hosting Control Panel. If needed, you could disable ModSecurity for a particular Internet site or turn on the so-called detection mode in which case the firewall will still function and record data, but will not do anything to stop potential attacks on your sites. Thorough logs shall be accessible within your CP and you shall be able to see what sort of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks came from, etc. We employ 2 kinds of rules on our servers - commercial ones from a firm that operates in the field of web security, and custom made ones which our administrators often include to respond to newly identified threats in a timely manner.
-
ModSecurity in Dedicated Hosting
All of our
dedicated servers which are set up with the Hepsia hosting Control Panel feature ModSecurity, so any program you upload or install shall be protected from the very beginning and you'll not have to stress about common attacks or vulnerabilities. An independent section within Hepsia will allow you to start or stop the firewall for each domain or subdomain, or turn on a detection mode so that it records info about intrusions, but doesn't take actions to stop them. What you shall see in the logs can enable you to to secure your Internet sites better - the IP an attack came from, what site was attacked and how, what ModSecurity rule was triggered, etc. With this information, you can see if an Internet site needs an update, if you should block IPs from accessing your server, etc. On top of the third-party commercial security rules for ModSecurity we use, our admins include custom ones as well whenever they find a new threat which is not yet in the commercial bundle.