Discover what ModSecurity is in fact, the way it works and exactly what it can do to defend your websites and apps.
ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its performance and in case it detects an intrusion attempt, it blocks it. The firewall also keeps a more thorough log for the website visitors than any web server does, so you'll manage to keep track of what is happening with your sites much better than if you rely only on standard logs. ModSecurity works with security rules based on which it stops attacks. For example, it detects whether anyone is trying to log in to the administrator area of a particular script multiple times or if a request is sent to execute a file with a certain command. In these cases these attempts set off the corresponding rules and the software blocks the attempts right away, then records in-depth details about them inside its logs. ModSecurity is one of the most effective software firewalls on the market and it can protect your web apps against a large number of threats and vulnerabilities, particularly in case you don’t update them or their plugins often.
ModSecurity in Cloud Web Hosting
ModSecurity is offered with each cloud web hosting
solution which we provide and it's switched on by default for any domain or subdomain that you include via your Hepsia Control Panel. If it interferes with any of your applications or you'd like to disable it for whatever reason, you'll be able to accomplish that through the ModSecurity section of Hepsia with simply a mouse click. You may also enable a passive mode, so the firewall will discover possible attacks and maintain a log, but will not take any action. You could see comprehensive logs in the very same section, including the IP address where the attack originated from, what precisely the attacker attempted to do and at what time, what ModSecurity did, etcetera. For optimum protection of our customers we use a collection of commercial firewall rules mixed with custom ones which are added by our system administrators.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting
packages that we offer come with ModSecurity and since the firewall is switched on by default, any site you create under a domain or a subdomain will be protected right from the start. An individual section within the Hepsia Control Panel that comes with the semi-dedicated accounts is devoted to ModSecurity and it shall allow you to stop and start the firewall for any website or enable a detection mode. With the last option, ModSecurity shall not take any action, but it will still recognize possible attacks and will keep all information within a log as if it were fully active. The logs could be found inside the exact same section of the Control Panel and they feature details about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, and so on. The security rules we use on our web servers are a mix between commercial ones from a security company and custom ones developed by our system admins. Therefore, we provide increased security for your web programs as we can defend them from attacks before security businesses release updates for brand new threats.
ModSecurity in VPS Hosting
ModSecurity is pre-installed on all virtual private servers
that are provided with the Hepsia hosting CP, so your web apps shall be secured from the second your server is in a position. The firewall is switched on by default for any domain or subdomain on the VPS, but if needed, you'll be able to deactivate it with a click from the corresponding section of Hepsia. You may also set it to function in detection mode, so it will keep a detailed log of any potential attacks without taking any action to prevent them. The logs can be found within the exact same section and include information regarding the nature of the attack, what IP address it originated from and what ModSecurity rule was triggered to stop it. For best security, we employ not only commercial rules from a business working in the field of web security, but also custom ones our admins include manually in order to react to new risks which are still not tackled in the commercial rules.
ModSecurity in Dedicated Web Hosting
When you choose to host your sites on a dedicated server
with the Hepsia CP, your web programs shall be secured right away since ModSecurity is supplied with all Hepsia-based packages. You'll be able to regulate the firewall without difficulty and if needed, you'll be able to turn it off or switch on its passive mode when it shall only maintain a log of what is occurring without taking any action to prevent possible attacks. The logs which you'll find inside the exact same section of the Control Panel are incredibly detailed and include data about the attacker IP address, what site and file were attacked and in what way, what rule the firewall employed to prevent the intrusion, etc. This information will allow you to take measures and improve the security of your Internet sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our administrators include when they recognize attacks which haven't yet been included within the commercial pack.