ModSecurity
Discover what ModSecurity is, how it works and what exactly it does so as to protect your Internet sites and applications.
ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its overall performance and when it detects an intrusion attempt, it prevents it. The firewall furthermore keeps a more comprehensive log for the site visitors than any web server does, so you shall be able to monitor what is happening with your websites much better than if you rely simply on standard logs. ModSecurity works with security rules based on which it helps prevent attacks. For example, it detects whether anyone is trying to log in to the administrator area of a particular script several times or if a request is sent to execute a file with a specific command. In these situations these attempts set off the corresponding rules and the firewall program hinders the attempts immediately, then records comprehensive information about them inside its logs. ModSecurity is amongst the most effective software firewalls on the market and it can easily protect your web applications against many threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.
-
ModSecurity in Cloud Hosting
ModSecurity is available with every single
cloud hosting solution which we offer and it is switched on by default for every domain or subdomain which you include via your Hepsia Control Panel. If it interferes with any of your applications or you'd like to disable it for some reason, you will be able to accomplish that through the ModSecurity area of Hepsia with only a mouse click. You may also enable a passive mode, so the firewall will identify potential attacks and maintain a log, but shall not take any action. You can see extensive logs in the very same section, including the IP address where the attack originated from, what exactly the attacker aimed to do and at what time, what ModSecurity did, etc. For maximum protection of our clients we use a group of commercial firewall rules mixed with custom ones that are added by our system administrators.
-
ModSecurity in Semi-dedicated Servers
ModSecurity is a part of our
semi-dedicated server plans and if you decide to host your websites with us, there won't be anything special you will have to do since the firewall is activated by default for all domains and subdomains that you add through your hosting Control Panel. If required, you could disable ModSecurity for a certain site or enable the so-called detection mode in which case the firewall shall still work and record information, but shall not do anything to stop possible attacks on your Internet sites. Comprehensive logs shall be accessible in your CP and you shall be able to see what sort of attacks happened, what security rules were triggered and how the firewall handled the threats, what IP addresses the attacks came from, etcetera. We employ two types of rules on our servers - commercial ones from a business which operates in the field of web security, and custom made ones which our administrators often include to respond to newly discovered threats promptly.
-
ModSecurity in VPS Servers
ModSecurity comes with all Hepsia-based
VPS servers that we offer and it will be switched on automatically for every new domain or subdomain which you include on the hosting server. In this way, any web application which you install will be secured immediately without doing anything manually on your end. The firewall could be managed through the section of the Control Panel which has the same name. This is the location in whichyou could switch off ModSecurity or let its passive mode, so it will not take any action towards threats, but will still keep a thorough log. The recorded info is available within the same area as well and you'll be able to see what IPs any attacks came from so that you block them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity responded. The rules we use on our servers are a mixture between commercial ones which we get from a security company and custom ones that are added by our staff to maximize the security of any web apps hosted on our end.
-
ModSecurity in Dedicated Servers
When you decide to host your Internet sites on a
dedicated server with the Hepsia Control Panel, your web applications shall be protected right away because ModSecurity is available with all Hepsia-based solutions. You shall be able to manage the firewall with ease and if required, you shall be able to turn it off or activate its passive mode when it shall only maintain a log of what's happening without taking any action to stop possible attacks. The logs that you will find inside the very same section of the CP are incredibly detailed and include info about the attacker IP, what site and file were attacked and in what way, what rule the firewall used to prevent the intrusion, and so on. This data will permit you to take measures and increase the protection of your websites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones which our admins include when they detect attacks which have not yet been included inside the commercial pack.