Discover what ModSecurity actually is, what it does and what exactly it will do to protect your web sites and web applications.
ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its operation and when it discovers an intrusion attempt, it prevents it. The firewall also maintains a more thorough log for the traffic than any web server does, so you shall manage to monitor what's going on with your Internet sites better than if you rely merely on conventional logs. ModSecurity uses security rules based on which it stops attacks. For instance, it recognizes whether someone is trying to log in to the administrator area of a specific script multiple times or if a request is sent to execute a file with a specific command. In these cases these attempts set off the corresponding rules and the firewall software hinders the attempts right away, after that records in-depth info about them within its logs. ModSecurity is among the very best software firewalls out there and it can protect your web applications against a large number of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.
ModSecurity in Hosting
ModSecurity is available on all hosting
machines, so when you decide to host your Internet sites with our organization, they'll be resistant to a wide array of attacks. The firewall is enabled as standard for all domains and subdomains, so there shall be nothing you will need to do on your end. You'll be able to stop ModSecurity for any website if necessary, or to activate a detection mode, so that all activity shall be recorded, but the firewall won't take any real action. You'll be able to view specific logs via your Hepsia CP including the IP address where the attack came from, what the attacker wanted to do and how ModSecurity dealt with the threat. As we take the security of our clients' websites very seriously, we use a set of commercial rules that we take from one of the best companies that maintain this sort of rules. Our administrators also include custom rules to ensure that your websites shall be resistant to as many threats as possible.
ModSecurity in Semi-dedicated Hosting
We have incorporated ModSecurity as a standard in all semi-dedicated hosting
products, so your web apps will be protected whenever you set them up under any domain or subdomain. The Hepsia CP that comes with the semi-dedicated accounts shall permit you to activate or turn off the firewall for any site with a click. You shall also be able to switch on a passive detection mode with which ModSecurity shall keep a log of potential attacks without really preventing them. The detailed logs include things like the nature of the attack and what ModSecurity response that attack generated, where it came from, etcetera. The list of rules that we use is frequently updated as to match any new threats that might appear on the Internet and it consists of both commercial rules that we get from a security company and custom-written ones which our administrators add in the event that they find a threat that is not present within the commercial list yet.
ModSecurity in VPS Hosting
ModSecurity comes with all Hepsia-based virtual private servers
we offer and it'll be activated automatically for every new domain or subdomain which you include on the hosting server. In this way, any web application that you install shall be protected immediately without doing anything personally on your end. The firewall may be managed from the section of the CP that bears the same name. This is the place in whichyou can switch off ModSecurity or activate its passive mode, so it will not take any action toward threats, but shall still keep a comprehensive log. The recorded info is available inside the same section as well and you'll be able to see what IPs any attacks came from to enable you to stop them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity reacted. The rules we employ on our servers are a blend between commercial ones which we get from a security company and custom ones that are included by our admins to improve the security of any web applications hosted on our end.
ModSecurity in Dedicated Web Hosting
All our dedicated servers
which are installed with the Hepsia hosting Control Panel include ModSecurity, so any application that you upload or set up will be secured from the very beginning and you won't need to bother about common attacks or vulnerabilities. An independent section within Hepsia will enable you to start or stop the firewall for any domain or subdomain, or turn on a detection mode so that it records details about intrusions, but doesn't take actions to stop them. What you shall see in the logs can easily enable you to to secure your Internet sites better - the IP an attack came from, what site was attacked and in what way, what ModSecurity rule was triggered, and so forth. With this info, you can see if a site needs an update, whether you need to block IPs from accessing your server, etcetera. Besides the third-party commercial security rules for ModSecurity that we use, our administrators include custom ones as well if they come across a new threat that is not yet a part of the commercial bundle.