ModSecurity
Discover what ModSecurity is, how it functions and just what it does so as to protect your web sites and applications.
ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its performance and when it detects an intrusion attempt, it blocks it. The firewall furthermore maintains a more thorough log for the website visitors than any web server does, so you shall manage to keep an eye on what is going on with your websites better than if you rely simply on conventional logs. ModSecurity employs security rules based on which it stops attacks. For example, it recognizes whether someone is attempting to log in to the administration area of a given script a number of times or if a request is sent to execute a file with a particular command. In such situations these attempts trigger the corresponding rules and the firewall blocks the attempts immediately, then records detailed information about them within its logs. ModSecurity is amongst the most effective software firewalls on the market and it can easily protect your web apps against a huge number of threats and vulnerabilities, particularly if you don’t update them or their plugins frequently.
-
ModSecurity in Shared Hosting
ModSecurity comes standard with all
shared hosting packages which we supply and it will be turned on automatically for any domain or subdomain you add/create in your Hepsia hosting Control Panel. The firewall has 3 different modes, so you can activate and disable it with just a mouse click or set it to detection mode, so it will maintain a log of all attacks, but it shall not do anything to prevent them. The log for any of your websites shall feature detailed info such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so forth. The firewall rules we use are frequently updated and consist of both commercial ones that we get from a third-party security company and custom ones our system admins add in case that they detect a new type of attacks. That way, the websites which you host here shall be way more secure without any action required on your end.
-
ModSecurity in Semi-dedicated Hosting
We've included ModSecurity by default within all
semi-dedicated hosting packages, so your web applications will be protected the instant you set them up under any domain or subdomain. The Hepsia Control Panel which comes with the semi-dedicated accounts shall allow you to activate or disable the firewall for any site with a click. You will also be able to switch on a passive detection mode through which ModSecurity will keep a log of possible attacks without really preventing them. The comprehensive logs contain the nature of the attack and what ModSecurity response this attack triggered, where it came from, etcetera. The list of rules we employ is regularly updated as to match any new risks which may appear on the Internet and it features both commercial rules that we get from a security business and custom-written ones which our admins add in the event that they discover a threat that's not present inside the commercial list yet.
-
ModSecurity in VPS
ModSecurity comes with all Hepsia-based
virtual private servers which we offer and it shall be activated automatically for any new domain or subdomain you include on the hosting server. This way, any web application you install shall be protected from the very beginning without doing anything by hand on your end. The firewall may be managed via the section of the Control Panel that has the same name. This is the place whereyou could disable ModSecurity or let its passive mode, so it shall not take any action against threats, but shall still maintain a detailed log. The recorded info is available in the same section as well and you will be able to see what IPs any attacks originated from so that you can block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity responded. The rules which we employ on our servers are a mix between commercial ones which we obtain from a security organization and custom ones that are included by our administrators to improve the security of any web applications hosted on our end.
-
ModSecurity in Dedicated Hosting
ModSecurity is provided with all
dedicated servers which are integrated with our Hepsia CP and you won't need to do anything specific on your end to employ it as it's turned on by default every time you include a new domain or subdomain on your hosting server. If it disrupts some of your applications, you will be able to stop it via the respective section of Hepsia, or you could leave it working in passive mode, so it'll identify attacks and shall still keep a log for them, but won't block them. You could look at the logs later to learn what you can do to enhance the security of your Internet sites since you'll find details such as where an intrusion attempt came from, what Internet site was attacked and based upon what rule ModSecurity reacted, and so forth. The rules that we use are commercial, hence they are constantly updated by a security firm, but to be on the safe side, our staff also add custom rules every now and then in order to deal with any new threats they have found.