ModSecurity
Find out what ModSecurity is really, the way it works and exactly what it can do to protect your sites and apps.
ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its operation and in case it identifies an intrusion attempt, it prevents it. The firewall additionally maintains a more thorough log for the website visitors than any web server does, so you'll manage to keep an eye on what's going on with your websites better than if you rely merely on standard logs. ModSecurity employs security rules based on which it prevents attacks. For instance, it identifies whether somebody is trying to log in to the administration area of a given script multiple times or if a request is sent to execute a file with a specific command. In such circumstances these attempts set off the corresponding rules and the firewall software blocks the attempts in real time, and then records detailed info about them in its logs. ModSecurity is amongst the very best software firewalls available and it could easily protect your web apps against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins often.
-
ModSecurity in Web Hosting
ModSecurity comes by default with all
web hosting plans that we provide and it shall be switched on automatically for any domain or subdomain that you add/create in your Hepsia hosting CP. The firewall has three different modes, so you'll be able to activate and disable it with only a click or set it to detection mode, so it'll keep a log of all attacks, but it shall not do anything to stop them. The log for any of your websites will feature elaborate information such as the nature of the attack, where it came from, what action was taken by ModSecurity, etcetera. The firewall rules we use are constantly updated and include both commercial ones we get from a third-party security firm and custom ones our system admins add in the event that they detect a new sort of attacks. That way, the websites which you host here will be far more protected with no action required on your end.
-
ModSecurity in Semi-dedicated Hosting
ModSecurity is a part of our
semi-dedicated hosting packages and if you opt to host your websites with our company, there shall not be anything special you'll need to do as the firewall is activated by default for all domains and subdomains you include via your hosting CP. If needed, you could disable ModSecurity for a given site or enable the so-called detection mode in which case the firewall shall still operate and record data, but will not do anything to prevent potential attacks against your Internet sites. In depth logs will be readily available within your Control Panel and you'll be able to see which kind of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what Internet protocol addresses the attacks came from, and so forth. We employ 2 sorts of rules on our servers - commercial ones from a firm which operates in the field of web security, and customized ones which our administrators often add to respond to newly found threats on time.
-
ModSecurity in Dedicated Hosting
ModSecurity is included with all
dedicated servers that are set up with our Hepsia CP and you'll not have to do anything specific on your end to use it since it is activated by default each time you include a new domain or subdomain on your server. If it interferes with any of your programs, you'll be able to stop it via the respective section of Hepsia, or you can leave it operating in passive mode, so it shall recognize attacks and will still maintain a log for them, but won't block them. You can look at the logs later to learn what you can do to enhance the security of your Internet sites as you shall find information such as where an intrusion attempt originated from, what website was attacked and based on what rule ModSecurity reacted, and so forth. The rules we use are commercial, hence they are constantly updated by a security firm, but to be on the safe side, our administrators also add custom rules every now and then as to respond to any new threats they have identified.