Learn what ModSecurity is, how it functions and just what it does so as to protect your web sites and applications.
ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its overall performance and in case it identifies an intrusion attempt, it prevents it. The firewall also maintains a more thorough log for the traffic than any web server does, so you will be able to keep an eye on what's happening with your websites better than if you rely merely on standard logs. ModSecurity works with security rules based on which it stops attacks. For instance, it detects whether someone is trying to log in to the administrator area of a particular script a number of times or if a request is sent to execute a file with a specific command. In such cases these attempts set off the corresponding rules and the firewall program blocks the attempts instantly, and then records detailed details about them within its logs. ModSecurity is amongst the very best software firewalls on the market and it can easily protect your web applications against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.
ModSecurity in Shared Website Hosting
We provide ModSecurity with all shared website hosting
packages, so your Internet apps shall be shielded from malicious attacks. The firewall is turned on by default for all domains and subdomains, but in case you'd like, you shall be able to stop it using the respective area of your Hepsia CP. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs that you will find within Hepsia are very detailed and feature info about the nature of any attack, when it occurred and from what IP address, the firewall rule which was triggered, etc. We use a set of commercial rules that are frequently updated, but sometimes our admins add custom rules as well in order to efficiently protect the Internet sites hosted on our servers.
ModSecurity in Semi-dedicated Servers
Any web app which you install within your new semi-dedicated server
account will be protected by ModSecurity because the firewall is provided with all our hosting solutions and is switched on by default for any domain and subdomain that you add or create via your Hepsia hosting Control Panel. You'll be able to manage ModSecurity via a dedicated section within Hepsia where not simply can you activate or deactivate it completely, but you could also switch on a passive mode, so the firewall shall not stop anything, but it will still maintain a record of possible attacks. This requires simply a mouse click and you shall be able to view the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was dealt with, etcetera. The firewall employs two sets of rules on our web servers - a commercial one that we get from a third-party web security provider and a custom one which our admins update personally as to respond to newly discovered risks immediately.
ModSecurity in VPS Servers
All VPS servers
which are set up with the Hepsia CP include ModSecurity. The firewall is installed and activated by default for all domains which are hosted on the web server, so there shall not be anything special that you'll have to do to protect your websites. It will take you just a click to stop ModSecurity if necessary or to activate its passive mode so that it records what happens without taking any steps to stop intrusions. You'll be able to view the logs produced in passive or active mode from the corresponding section of Hepsia and discover more about the type of the attack, where it came from, what rule the firewall employed to take care of it, and so forth. We use a combination of commercial and custom rules in order to make sure that ModSecurity will block as many risks as possible, consequently improving the security of your web apps as much as possible.
ModSecurity in Dedicated Servers
If you opt to host your websites on a dedicated server
with the Hepsia Control Panel, your web applications will be secured right away because ModSecurity is supplied with all Hepsia-based solutions. You shall be able to manage the firewall easily and if necessary, you'll be able to turn it off or activate its passive mode when it'll only maintain a log of what's taking place without taking any action to prevent possible attacks. The logs that you will find within the exact same section of the CP are very detailed and feature data about the attacker IP address, what website and file were attacked and in what way, what rule the firewall used to stop the intrusion, and so forth. This data shall allow you to take measures and improve the security of your websites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our admins include every time they identify attacks which have not yet been included within the commercial pack.