Find out what ModSecurity is really, how it works and just what it can do to defend your websites and applications.
ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its operation and in case it identifies an intrusion attempt, it blocks it. The firewall furthermore maintains a more comprehensive log for the traffic than any server does, so you will manage to keep an eye on what's going on with your websites better than if you rely only on standard logs. ModSecurity uses security rules based on which it stops attacks. For example, it recognizes whether anyone is attempting to log in to the administration area of a specific script several times or if a request is sent to execute a file with a certain command. In such cases these attempts set off the corresponding rules and the firewall software hinders the attempts right away, and then records in-depth info about them in its logs. ModSecurity is amongst the best software firewalls on the market and it could easily protect your web applications against thousands of threats and vulnerabilities, particularly in case you don’t update them or their plugins often.
ModSecurity in Hosting
We offer ModSecurity with all hosting
plans, so your web apps shall be shielded from destructive attacks. The firewall is switched on as standard for all domains and subdomains, but in case you'd like, you shall be able to stop it through the respective area of your Hepsia CP. You'll be able to also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs which you shall find within Hepsia are extremely detailed and include data about the nature of any attack, when it transpired and from what IP address, the firewall rule which was triggered, etcetera. We employ a group of commercial rules that are constantly updated, but sometimes our admins add custom rules as well in order to better protect the sites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
ModSecurity is a part of our semi-dedicated hosting
solutions and if you decide to host your Internet sites with our company, there won't be anything special you'll need to do given that the firewall is turned on by default for all domains and subdomains that you include via your hosting Control Panel. If needed, you can disable ModSecurity for a particular website or turn on the so-called detection mode in which case the firewall shall still operate and record information, but will not do anything to stop potential attacks on your websites. Comprehensive logs will be available within your CP and you will be able to see what type of attacks happened, what security rules were triggered and how the firewall addressed the threats, what Internet protocol addresses the attacks originated from, and so on. We employ two kinds of rules on our servers - commercial ones from a company that operates in the field of web security, and custom ones that our admins sometimes add to respond to newly identified threats in a timely manner.
ModSecurity in VPS Hosting
ModSecurity is pre-installed on all virtual private servers
that are offered with the Hepsia hosting Control Panel, so your web applications shall be secured from the instant your server is ready. The firewall is switched on by default for any domain or subdomain on the Virtual Private Server, but if necessary, you can disable it with a click via the corresponding section of Hepsia. You can also set it to work in detection mode, so it'll keep a detailed log of any possible attacks without taking any action to prevent them. The logs are available within the same section and offer information regarding the nature of the attack, what IP it came from and what ModSecurity rule was triggered to stop it. For best security, we use not simply commercial rules from a business working in the field of web security, but also custom ones which our administrators add manually so as to react to new risks which are still not addressed in the commercial rules.
ModSecurity in Dedicated Web Hosting
All our dedicated servers
that are installed with the Hepsia hosting Control Panel come with ModSecurity, so any program you upload or set up will be protected from the very beginning and you won't have to concern yourself with common attacks or vulnerabilities. An independent section inside Hepsia will enable you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records details about intrusions, but does not take actions to prevent them. What you will discover in the logs shall allow you to to secure your websites better - the IP an attack came from, what website was attacked and in what way, what ModSecurity rule was triggered, and so forth. With this info, you could see whether an Internet site needs an update, whether you should block IPs from accessing your server, etc. On top of the third-party commercial security rules for ModSecurity we use, our admins include custom ones too every time they discover a new threat that is not yet included in the commercial bundle.