Discover what ModSecurity is in fact, how it works and what exactly it can do to shield your websites and applications.
ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its performance and in case it identifies an intrusion attempt, it prevents it. The firewall additionally keeps a more comprehensive log for the website visitors than any web server does, so you shall manage to monitor what's going on with your websites much better than if you rely merely on standard logs. ModSecurity employs security rules based on which it stops attacks. For example, it detects if anyone is attempting to log in to the administrator area of a specific script multiple times or if a request is sent to execute a file with a certain command. In these situations these attempts trigger the corresponding rules and the firewall hinders the attempts immediately, after that records comprehensive info about them within its logs. ModSecurity is amongst the most effective software firewalls out there and it could easily protect your web apps against many threats and vulnerabilities, particularly if you don’t update them or their plugins regularly.
ModSecurity in Cloud Website Hosting
ModSecurity is supplied with all cloud website hosting
web servers, so if you opt to host your sites with our firm, they'll be protected against an array of attacks. The firewall is turned on as standard for all domains and subdomains, so there shall be nothing you shall need to do on your end. You shall be able to stop ModSecurity for any site if needed, or to enable a detection mode, so that all activity shall be recorded, but the firewall won't take any real action. You will be able to view specific logs through your Hepsia CP including the IP where the attack originated from, what the attacker wanted to do and how ModSecurity dealt with the threat. Since we take the protection of our customers' websites seriously, we use a selection of commercial rules which we get from one of the best companies that maintain this sort of rules. Our administrators also add custom rules to make certain that your sites will be protected against as many threats as possible.
ModSecurity in Semi-dedicated Servers
All semi-dedicated server
solutions which we offer feature ModSecurity and since the firewall is turned on by default, any site which you set up under a domain or a subdomain will be protected immediately. An independent section inside the Hepsia CP which comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll enable you to stop and start the firewall for any Internet site or switch on a detection mode. With the latter, ModSecurity will not take any action, but it shall still recognize possible attacks and will keep all data within a log as if it were completely active. The logs can be found in the very same section of the CP and they offer info about the IP where an attack came from, what its nature was, what rule ModSecurity applies to identify and stop it, etc. The security rules that we use on our machines are a mix between commercial ones from a security business and custom ones developed by our system administrators. For that reason, we offer greater security for your web programs as we can shield them from attacks before security firms release updates for brand new threats.
ModSecurity in VPS Servers
ModSecurity is included with all Hepsia-based VPS servers
which we offer and it'll be switched on automatically for any new domain or subdomain which you include on the machine. This way, any web application that you install shall be protected right from the start without doing anything personally on your end. The firewall could be handled via the section of the Control Panel which bears the same name. This is the area in whichyou'll be able to disable ModSecurity or enable its passive mode, so it shall not take any action against threats, but will still maintain a thorough log. The recorded data is available inside the same section as well and you will be able to see what IPs any attacks came from to enable you to block them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity responded. The rules that we employ on our servers are a blend between commercial ones we get from a security firm and custom ones which are included by our staff to optimize the security of any web apps hosted on our end.
ModSecurity in Dedicated Servers
When you choose to host your websites on a dedicated server
with the Hepsia CP, your web apps shall be protected right away as ModSecurity is supplied with all Hepsia-based plans. You shall be able to control the firewall without difficulty and if necessary, you'll be able to turn it off or switch on its passive mode when it will only maintain a log of what's occurring without taking any action to stop possible attacks. The logs which you can find inside the very same section of the Control Panel are quite detailed and contain info about the attacker IP address, what site and file were attacked and in what way, what rule the firewall employed to prevent the intrusion, etc. This data shall permit you to take measures and increase the protection of your sites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones which our staff add when they recognize attacks that haven't yet been included within the commercial pack.