Find out what ModSecurity actually is, how it operates and what precisely it does to shield your web sites and apps.
ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its overall performance and if it detects an intrusion attempt, it blocks it. The firewall furthermore keeps a more detailed log for the site visitors than any server does, so you will manage to monitor what's going on with your websites a lot better than if you rely only on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For example, it detects whether somebody is trying to log in to the administrator area of a specific script several times or if a request is sent to execute a file with a certain command. In such circumstances these attempts set off the corresponding rules and the firewall program blocks the attempts instantly, and then records comprehensive info about them in its logs. ModSecurity is one of the best software firewalls on the market and it can easily protect your web apps against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins often.
ModSecurity in Hosting
ModSecurity is available on all hosting
servers, so when you opt to host your websites with our company, they'll be resistant to a wide array of attacks. The firewall is turned on as standard for all domains and subdomains, so there shall be nothing you will need to do on your end. You'll be able to stop ModSecurity for any Internet site if needed, or to activate a detection mode, so that all activity will be recorded, but the firewall will not take any real action. You'll be able to view comprehensive logs through your Hepsia CP including the IP where the attack originated from, what the attacker wanted to do and how ModSecurity addressed the threat. As we take the protection of our customers' sites very seriously, we use a collection of commercial rules which we take from one of the best companies that maintain this sort of rules. Our admins also include custom rules to make sure that your websites shall be protected against as many threats as possible.
ModSecurity in Semi-dedicated Servers
We have integrated ModSecurity as a standard in all semi-dedicated server
packages, so your web applications will be protected as soon as you install them under any domain or subdomain. The Hepsia CP which is included with the semi-dedicated accounts shall permit you to activate or disable the firewall for any site with a mouse click. You will also have the ability to switch on a passive detection mode through which ModSecurity shall keep a log of possible attacks without actually stopping them. The comprehensive logs contain the nature of the attack and what ModSecurity response this attack initiated, where it originated from, and so on. The list of rules that we employ is constantly updated in order to match any new risks which could appear on the Internet and it includes both commercial rules that we get from a security company and custom-written ones that our administrators include if they find a threat which is not present within the commercial list yet.
ModSecurity in VPS Servers
ModSecurity comes with all Hepsia-based VPS servers
which we offer and it'll be activated automatically for every new domain or subdomain which you add on the hosting server. That way, any web application which you install shall be secured right away without doing anything manually on your end. The firewall could be handled from the section of the Control Panel that has the same name. This is the place in whichyou could disable ModSecurity or enable its passive mode, so it will not take any action towards threats, but will still maintain a detailed log. The recorded information is available inside the same area as well and you'll be able to see what IPs any attacks originated from so that you can block them, what the nature of the attempted attacks was and based on what security rules ModSecurity responded. The rules we employ on our servers are a mixture between commercial ones which we obtain from a security company and custom ones which are added by our administrators to optimize the protection of any web apps hosted on our end.
ModSecurity in Dedicated Servers
All of our dedicated servers
which are set up with the Hepsia hosting Control Panel come with ModSecurity, so any program which you upload or set up shall be properly secured from the very beginning and you won't have to worry about common attacks or vulnerabilities. An individual section in Hepsia will enable you to start or stop the firewall for each and every domain or subdomain, or turn on a detection mode so that it records information regarding intrusions, but does not take actions to prevent them. What you shall find in the logs can enable you to to secure your websites better - the IP an attack originated from, what website was attacked and in what way, what ModSecurity rule was triggered, etcetera. With this info, you'll be able to see if an Internet site needs an update, if you should block IPs from accessing your server, and so forth. Aside from the third-party commercial security rules for ModSecurity we use, our admins include custom ones as well when they find a new threat that's not yet included in the commercial bundle.