Find out what ModSecurity is in fact, the way it works and what precisely it does to guard your web sites and applications.
ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its functionality and if it discovers an intrusion attempt, it prevents it. The firewall additionally maintains a more thorough log for the traffic than any server does, so you shall be able to keep track of what's going on with your sites a lot better than if you rely simply on standard logs. ModSecurity uses security rules based on which it stops attacks. For instance, it detects if somebody is attempting to log in to the administrator area of a particular script multiple times or if a request is sent to execute a file with a certain command. In these situations these attempts set off the corresponding rules and the firewall program blocks the attempts in real time, and then records in-depth information about them in its logs. ModSecurity is one of the most effective software firewalls available and it can protect your web apps against a large number of threats and vulnerabilities, especially if you don’t update them or their plugins frequently.
ModSecurity in Hosting
ModSecurity is provided with all hosting
servers, so if you choose to host your sites with our organization, they will be protected against a wide range of attacks. The firewall is enabled as standard for all domains and subdomains, so there'll be nothing you'll have to do on your end. You'll be able to stop ModSecurity for any site if required, or to switch on a detection mode, so that all activity shall be recorded, but the firewall will not take any real action. You will be able to view specific logs via your Hepsia Control Panel including the IP address where the attack came from, what the attacker wanted to do and how ModSecurity handled the threat. Since we take the safety of our customers' sites seriously, we use a group of commercial rules which we take from one of the top firms that maintain this sort of rules. Our administrators also add custom rules to make sure that your websites will be resistant to as many threats as possible.
ModSecurity in Semi-dedicated Hosting
ModSecurity is part of our semi-dedicated hosting
plans and if you opt to host your Internet sites with us, there shall not be anything special you'll need to do given that the firewall is activated by default for all domains and subdomains which you add using your hosting CP. If needed, you'll be able to disable ModSecurity for a certain site or switch on the so-called detection mode in which case the firewall will still work and record info, but shall not do anything to stop possible attacks against your sites. Detailed logs shall be accessible inside your Control Panel and you'll be able to see which kind of attacks took place, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, etc. We use two kinds of rules on our servers - commercial ones from an organization which operates in the field of web security, and custom ones which our admins occasionally include to respond to newly discovered threats promptly.
ModSecurity in VPS Web Hosting
All virtual private servers
which are offered with the Hepsia CP include ModSecurity. The firewall is installed and activated by default for all domains that are hosted on the machine, so there will not be anything special which you shall have to do to protect your sites. It shall take you just a click to stop ModSecurity if necessary or to activate its passive mode so that it records what occurs without taking any measures to stop intrusions. You shall be able to see the logs produced in passive or active mode from the corresponding section of Hepsia and find out more about the type of the attack, where it came from, what rule the firewall used to take care of it, etcetera. We employ a mixture of commercial and custom rules in order to ensure that ModSecurity shall prevent as many threats as possible, thus enhancing the protection of your web programs as much as possible.
ModSecurity in Dedicated Servers Hosting
All our dedicated servers
which are set up with the Hepsia hosting CP come with ModSecurity, so any app you upload or install will be secured from the very beginning and you will not need to concern yourself with common attacks or vulnerabilities. An individual section inside Hepsia will enable you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records information about intrusions, but does not take actions to stop them. What you'll discover in the logs shall help you to secure your Internet sites better - the IP address an attack originated from, what website was attacked and how, what ModSecurity rule was triggered, and so forth. With this info, you could see whether a site needs an update, whether you ought to block IPs from accessing your server, and so forth. In addition to the third-party commercial security rules for ModSecurity that we use, our admins add custom ones as well whenever they discover a new threat that's not yet a part of the commercial bundle.