Discover what ModSecurity is, what it does and what actually it can do to protect your sites and web apps.
ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its functionality and when it detects an intrusion attempt, it prevents it. The firewall also maintains a more comprehensive log for the website visitors than any web server does, so you'll manage to keep track of what's going on with your Internet sites better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it helps prevent attacks. For example, it detects if anyone is trying to log in to the administration area of a given script several times or if a request is sent to execute a file with a specific command. In these cases these attempts trigger the corresponding rules and the firewall software hinders the attempts in real time, after that records comprehensive information about them within its logs. ModSecurity is one of the very best software firewalls on the market and it could easily protect your web applications against a large number of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.
ModSecurity in Cloud Hosting
ModSecurity comes standard with all cloud hosting
plans that we offer and it shall be switched on automatically for any domain or subdomain that you add/create in your Hepsia hosting Control Panel. The firewall has three different modes, so you can activate and disable it with only a mouse click or set it to detection mode, so it will keep a log of all attacks, but it'll not do anything to stop them. The log for each of your websites will include elaborate information including the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules we use are constantly updated and incorporate both commercial ones that we get from a third-party security business and custom ones our system administrators include in the event that they detect a new type of attacks. In this way, the websites which you host here shall be a lot more secure without any action expected on your end.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting
solutions which we offer include ModSecurity and since the firewall is enabled by default, any site that you build under a domain or a subdomain shall be protected right from the start. An individual section in the Hepsia Control Panel that comes with the semi-dedicated accounts is devoted to ModSecurity and it'll enable you to stop and start the firewall for any site or enable a detection mode. With the last mentioned, ModSecurity will not take any action, but it shall still identify possible attacks and shall keep all info inside a log as if it were 100% active. The logs could be found inside the very same section of the Control Panel and they include information about the IP where an attack came from, what its nature was, what rule ModSecurity applies to recognize and stop it, etc. The security rules that we employ on our machines are a mix between commercial ones from a security business and custom ones created by our system admins. As a result, we provide higher security for your web applications as we can shield them from attacks even before security firms release updates for brand new threats.
ModSecurity in VPS Web Hosting
Security is of the utmost importance to us, so we set up ModSecurity on all virtual private servers
which are made available with the Hepsia CP by default. The firewall can be managed through a dedicated section in Hepsia and is activated automatically when you include a new domain or create a subdomain, so you will not need to do anything manually. You'll also be able to deactivate it or switch on the so-called detection mode, so it'll maintain a log of possible attacks that you can later examine, but won't block them. The logs in both passive and active modes contain info regarding the kind of the attack and how it was eliminated, what IP it originated from and other valuable info which could help you to tighten the security of your websites by updating them or blocking IPs, as an example. Besides the commercial rules that we get for ModSecurity from a third-party security company, we also use our own rules because once in a while we identify specific attacks that are not yet present inside the commercial package. This way, we could enhance the security of your Virtual private server right away rather than awaiting a certified update.
ModSecurity in Dedicated Servers Hosting
All our dedicated servers
which are set up with the Hepsia hosting Control Panel include ModSecurity, so any application you upload or set up will be secured from the very beginning and you will not have to concern yourself with common attacks or vulnerabilities. An independent section within Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or switch on a detection mode so that it records information regarding intrusions, but does not take actions to stop them. What you shall see in the logs can easily allow you to to secure your websites better - the IP an attack originated from, what website was attacked and how, what ModSecurity rule was triggered, and so on. With this data, you can see if an Internet site needs an update, whether you need to block IPs from accessing your web server, and so forth. Besides the third-party commercial security rules for ModSecurity that we use, our administrators include custom ones too when they discover a new threat which is not yet a part of the commercial bundle.