Find out what ModSecurity is in fact, how it operates and exactly what it will do to shield your websites and apps.
ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its operation and if it discovers an intrusion attempt, it blocks it. The firewall additionally keeps a more thorough log for the site visitors than any server does, so you'll manage to keep track of what's going on with your sites a lot better than if you rely merely on standard logs. ModSecurity uses security rules based on which it stops attacks. For example, it recognizes if someone is trying to log in to the administrator area of a certain script multiple times or if a request is sent to execute a file with a certain command. In such instances these attempts trigger the corresponding rules and the software hinders the attempts immediately, then records detailed information about them in its logs. ModSecurity is one of the very best software firewalls out there and it can easily protect your web applications against many threats and vulnerabilities, especially if you don’t update them or their plugins frequently.
ModSecurity in Cloud Web Hosting
ModSecurity can be found with every cloud web hosting
package which we provide and it's switched on by default for every domain or subdomain that you add via your Hepsia Control Panel. In case it interferes with any of your programs or you would like to disable it for any reason, you'll be able to do this through the ModSecurity section of Hepsia with only a mouse click. You could also use a passive mode, so the firewall will discover possible attacks and keep a log, but won't take any action. You can view detailed logs in the same section, including the IP address where the attack came from, what precisely the attacker aimed to do and at what time, what ModSecurity did, and so forth. For max protection of our customers we use a set of commercial firewall rules blended with custom ones which are provided by our system admins.
ModSecurity in Semi-dedicated Servers
We've included ModSecurity by default within all semi-dedicated server
products, so your web applications will be protected whenever you install them under any domain or subdomain. The Hepsia Control Panel that comes with the semi-dedicated accounts shall permit you to activate or turn off the firewall for any Internet site with a mouse click. You will also have the ability to activate a passive detection mode through which ModSecurity will keep a log of potential attacks without actually stopping them. The thorough logs include things like the nature of the attack and what ModSecurity response that attack triggered, where it came from, and so on. The list of rules that we use is regularly updated in order to match any new threats that might appear on the Internet and it consists of both commercial rules that we get from a security business and custom-written ones that our administrators include if they discover a threat which is not present within the commercial list yet.
ModSecurity in VPS Servers
ModSecurity is pre-installed on all VPS servers
that are provided with the Hepsia hosting CP, so your web programs shall be protected from the second your server is ready. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if needed, you could disable it with a click via the corresponding section of Hepsia. You can also set it to work in detection mode, so it'll keep a detailed log of any possible attacks without taking any action to prevent them. The logs can be found within the exact same section and provide info about the nature of the attack, what IP it originated from and what ModSecurity rule was triggered to stop it. For best security, we employ not only commercial rules from a firm working in the field of web security, but also custom ones which our administrators include manually in order to react to new risks which are still not dealt with in the commercial rules.
ModSecurity in Dedicated Servers
All our dedicated servers
which are set up with the Hepsia hosting Control Panel feature ModSecurity, so any application which you upload or set up shall be secured from the very beginning and you won't need to concern yourself with common attacks or vulnerabilities. An independent section in Hepsia will enable you to start or stop the firewall for any domain or subdomain, or turn on a detection mode so that it records information regarding intrusions, but does not take actions to prevent them. What you'll see in the logs shall enable you to to secure your Internet sites better - the IP address an attack originated from, what site was attacked and how, what ModSecurity rule was triggered, and so on. With this data, you could see whether an Internet site needs an update, whether you ought to block IPs from accessing your hosting server, and so forth. In addition to the third-party commercial security rules for ModSecurity that we use, our admins add custom ones as well if they find a new threat which is not yet a part of the commercial bundle.