ModSecurity
Learn what ModSecurity actually is, what it does and precisely what it does to defend your sites and applications.
ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its overall performance and if it detects an intrusion attempt, it prevents it. The firewall furthermore maintains a more thorough log for the site visitors than any server does, so you shall be able to keep an eye on what's happening with your sites better than if you rely only on standard logs. ModSecurity works with security rules based on which it helps prevent attacks. For instance, it identifies whether anyone is attempting to log in to the administrator area of a certain script multiple times or if a request is sent to execute a file with a particular command. In such situations these attempts trigger the corresponding rules and the software blocks the attempts right away, after that records in-depth information about them within its logs. ModSecurity is among the very best software firewalls on the market and it could easily protect your web apps against many threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.
-
ModSecurity in Shared Website Hosting
ModSecurity is available on all
shared website hosting machines, so when you choose to host your sites with our business, they shall be protected against a wide range of attacks. The firewall is turned on by default for all domains and subdomains, so there shall be nothing you will need to do on your end. You will be able to stop ModSecurity for any Internet site if needed, or to enable a detection mode, so all activity will be recorded, but the firewall shall not take any real action. You will be able to view detailed logs using your Hepsia Control Panel including the IP address where the attack came from, what the attacker wanted to do and how ModSecurity dealt with the threat. Since we take the security of our customers' websites seriously, we use a selection of commercial rules which we get from one of the leading companies which maintain this type of rules. Our admins also add custom rules to make sure that your sites will be resistant to as many threats as possible.
-
ModSecurity in Semi-dedicated Hosting
All
semi-dedicated hosting packages which we offer include ModSecurity and since the firewall is switched on by default, any Internet site you create under a domain or a subdomain shall be secured straight away. An independent section in the Hepsia Control Panel which comes with the semi-dedicated accounts is devoted to ModSecurity and it'll allow you to stop and start the firewall for any site or switch on a detection mode. With the last option, ModSecurity shall not take any action, but it shall still recognize possible attacks and shall keep all information inside a log as if it were fully active. The logs can be found in the exact same section of the CP and they include specifics about the IP where an attack came from, what its nature was, what rule ModSecurity applies to detect and stop it, and so on. The security rules we use on our machines are a mix of commercial ones from a security firm and custom ones made by our system admins. As a result, we provide higher security for your web apps as we can protect them from attacks even before security firms release updates for new threats.
-
ModSecurity in VPS Web Hosting
ModSecurity is pre-installed on all
virtual private servers which are set up with the Hepsia hosting Control Panel, so your web applications will be protected from the moment your server is in a position. The firewall is switched on by default for any domain or subdomain on the VPS, but if required, you can disable it with a click of your mouse from the corresponding section of Hepsia. You could also set it to operate in detection mode, so it shall maintain a detailed log of any possible attacks without taking any action to prevent them. The logs can be found in the very same section and offer info about the nature of the attack, what IP address it came from and what ModSecurity rule was initiated to stop it. For maximum security, we employ not only commercial rules from a company working in the field of web security, but also custom ones our administrators include manually so as to react to new risks which are still not dealt with in the commercial rules.
-
ModSecurity in Dedicated Servers Hosting
ModSecurity is provided with all
dedicated servers that are integrated with our Hepsia CP and you'll not need to do anything specific on your end to use it because it's activated by default whenever you include a new domain or subdomain on your hosting server. In the event that it interferes with any of your programs, you'll be able to stop it via the respective section of Hepsia, or you could leave it working in passive mode, so it shall recognize attacks and shall still maintain a log for them, but will not block them. You'll be able to analyze the logs later to learn what you can do to enhance the safety of your sites since you will find details such as where an intrusion attempt came from, what website was attacked and in accordance with what rule ModSecurity reacted, etc. The rules that we use are commercial, thus they are regularly updated by a security provider, but to be on the safe side, our admins also add custom rules from time to time as to react to any new threats they have discovered.