ModSecurity
Learn what ModSecurity actually is, how it operates and what precisely it will do to guard your websites and apps.
ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its performance and when it discovers an intrusion attempt, it blocks it. The firewall additionally maintains a more comprehensive log for the site visitors than any server does, so you shall be able to keep track of what's going on with your sites much better than if you rely simply on standard logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it detects if anyone is trying to log in to the administrator area of a given script a number of times or if a request is sent to execute a file with a certain command. In these instances these attempts trigger the corresponding rules and the software hinders the attempts immediately, after that records detailed information about them within its logs. ModSecurity is amongst the most effective software firewalls on the market and it could easily protect your web apps against a large number of threats and vulnerabilities, particularly if you don’t update them or their plugins frequently.
-
ModSecurity in Hosting
ModSecurity comes standard with all
hosting solutions that we supply and it shall be turned on automatically for any domain or subdomain which you add/create in your Hepsia hosting CP. The firewall has three different modes, so you'll be able to switch on and deactivate it with a click or set it to detection mode, so it'll keep a log of all attacks, but it shall not do anything to stop them. The log for each of your Internet sites shall feature in-depth information such as the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules we use are frequently updated and comprise of both commercial ones that we get from a third-party security company and custom ones our system administrators add in case that they detect a new kind of attacks. This way, the sites that you host here will be far more protected with no action expected on your end.
-
ModSecurity in Semi-dedicated Hosting
Any web application which you set up in your new
semi-dedicated hosting account will be protected by ModSecurity because the firewall comes with all our hosting solutions and is activated by default for any domain and subdomain you include or create using your Hepsia hosting CP. You will be able to manage ModSecurity through a dedicated area in Hepsia where not simply can you activate or deactivate it entirely, but you could also enable a passive mode, so the firewall shall not stop anything, but it shall still maintain a record of possible attacks. This requires simply a mouse click and you shall be able to view the logs no matter if ModSecurity is in passive or active mode through the same section - what the attack was and where it originated from, how it was addressed, and so forth. The firewall employs two groups of rules on our web servers - a commercial one that we get from a third-party web security provider and a custom one that our administrators update personally in order to respond to recently discovered threats at the earliest opportunity.
-
ModSecurity in VPS Web Hosting
ModSecurity comes with all Hepsia-based
virtual private servers we offer and it shall be turned on automatically for any new domain or subdomain which you include on the machine. That way, any web application which you install shall be protected right away without doing anything personally on your end. The firewall may be handled via the section of the CP which bears the same name. This is the place in whichyou could switch off ModSecurity or let its passive mode, so it shall not take any action toward threats, but will still keep a comprehensive log. The recorded data is available in the same section as well and you shall be able to see what IPs any attacks came from so that you can stop them, what the nature of the attempted attacks was and based upon what security rules ModSecurity responded. The rules that we use on our servers are a mixture between commercial ones which we obtain from a security firm and custom ones which are included by our administrators to maximize the protection of any web applications hosted on our end.
-
ModSecurity in Dedicated Servers Hosting
ModSecurity comes with all
dedicated servers which are set up with our Hepsia Control Panel and you won't need to do anything specific on your end to employ it as it's enabled by default whenever you include a new domain or subdomain on your web server. If it disrupts some of your applications, you'll be able to stop it through the respective part of Hepsia, or you could leave it working in passive mode, so it shall identify attacks and will still keep a log for them, but shall not block them. You may examine the logs later to learn what you can do to increase the security of your Internet sites as you shall find details such as where an intrusion attempt originated from, what site was attacked and based on what rule ModSecurity reacted, and so on. The rules we use are commercial, hence they are constantly updated by a security company, but to be on the safe side, our administrators also add custom rules occasionally as to react to any new threats they have found.