ModSecurity
Find out what ModSecurity is in fact, the way it works and exactly what it can do to protect your sites and applications.
ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its operation and in case it identifies an intrusion attempt, it prevents it. The firewall additionally keeps a more detailed log for the site visitors than any server does, so you will be able to monitor what is going on with your websites better than if you rely merely on conventional logs. ModSecurity works with security rules based on which it stops attacks. For instance, it recognizes whether someone is attempting to log in to the admin area of a specific script several times or if a request is sent to execute a file with a particular command. In such instances these attempts set off the corresponding rules and the firewall software blocks the attempts in real time, and then records detailed details about them within its logs. ModSecurity is among the most effective software firewalls out there and it can protect your web apps against thousands of threats and vulnerabilities, particularly if you don’t update them or their plugins regularly.
-
ModSecurity in Shared Hosting
ModSecurity is available on all
shared hosting machines, so if you decide to host your sites with our business, they will be resistant to an array of attacks. The firewall is turned on by default for all domains and subdomains, so there will be nothing you shall need to do on your end. You will be able to stop ModSecurity for any site if required, or to switch on a detection mode, so all activity shall be recorded, but the firewall will not take any real action. You shall be able to view comprehensive logs via your Hepsia Control Panel including the IP address where the attack came from, what the attacker wanted to do and how ModSecurity addressed the threat. Since we take the protection of our customers' Internet sites very seriously, we employ a group of commercial rules that we get from one of the leading firms that maintain such rules. Our admins also include custom rules to make sure that your Internet sites will be resistant to as many threats as possible.
-
ModSecurity in Semi-dedicated Servers
All
semi-dedicated server solutions which we offer include ModSecurity and because the firewall is turned on by default, any Internet site you create under a domain or a subdomain will be protected immediately. An independent section within the Hepsia Control Panel which comes with the semi-dedicated accounts is dedicated to ModSecurity and it'll permit you to stop and start the firewall for any Internet site or switch on a detection mode. With the last mentioned, ModSecurity won't take any action, but it will still detect possible attacks and will keep all information within a log as if it were completely active. The logs could be found in the very same section of the Control Panel and they include information about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, etcetera. The security rules that we use on our servers are a mix of commercial ones from a security company and custom ones developed by our system administrators. For that reason, we provide increased security for your web applications as we can defend them from attacks before security companies release updates for brand new threats.
-
ModSecurity in Dedicated Servers
If you choose to host your websites on a
dedicated server with the Hepsia Control Panel, your web applications shall be secured straight away since ModSecurity is provided with all Hepsia-based packages. You'll be able to control the firewall without difficulty and if required, you'll be able to turn it off or switch on its passive mode when it'll only maintain a log of what is occurring without taking any action to stop possible attacks. The logs which you'll find in the exact same section of the CP are extremely detailed and feature information about the attacker IP, what site and file were attacked and in what ways, what rule the firewall used to stop the intrusion, etcetera. This information shall enable you to take measures and increase the security of your sites even more. To be on the safe side, we employ not just commercial rules, but also custom-made ones which our staff add when they recognize attacks which haven't yet been included within the commercial pack.