Discover what ModSecurity is, how it works and just what it does so as to protect your web sites and apps.
ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its operation and when it identifies an intrusion attempt, it blocks it. The firewall additionally keeps a more detailed log for the traffic than any server does, so you shall be able to keep track of what's happening with your sites much better than if you rely only on standard logs. ModSecurity uses security rules based on which it prevents attacks. For instance, it detects if somebody is trying to log in to the admin area of a particular script multiple times or if a request is sent to execute a file with a certain command. In these circumstances these attempts trigger the corresponding rules and the firewall software hinders the attempts in real time, and then records detailed info about them in its logs. ModSecurity is amongst the most effective software firewalls out there and it can easily protect your web applications against a huge number of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.
ModSecurity in Cloud Hosting
ModSecurity comes standard with all cloud hosting
plans that we provide and it will be activated automatically for any domain or subdomain you add/create inside your Hepsia hosting CP. The firewall has three different modes, so you could switch on and deactivate it with just a mouse click or set it to detection mode, so it'll keep a log of all attacks, but it will not do anything to prevent them. The log for any of your Internet sites shall feature in-depth information including the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules we use are constantly updated and comprise of both commercial ones we get from a third-party security firm and custom ones which our system admins add in the event that they detect a new sort of attacks. In this way, the websites which you host here will be far more protected without any action expected on your end.
ModSecurity in Semi-dedicated Hosting
All semi-dedicated hosting
plans that we offer include ModSecurity and since the firewall is enabled by default, any site you create under a domain or a subdomain shall be secured immediately. A separate section within the Hepsia Control Panel that comes with the semi-dedicated accounts is devoted to ModSecurity and it shall allow you to stop and start the firewall for any site or activate a detection mode. With the last mentioned, ModSecurity shall not take any action, but it'll still recognize possible attacks and will keep all information inside a log as if it were completely active. The logs could be found within the same section of the Control Panel and they include information regarding the IP where an attack came from, what its nature was, what rule ModSecurity applies to recognize and stop it, and so forth. The security rules which we employ on our web servers are a mix of commercial ones from a security business and custom ones made by our system administrators. Therefore, we provide greater security for your web applications as we can defend them from attacks even before security companies release updates for completely new threats.
ModSecurity in Dedicated Hosting
All of our dedicated servers
which are installed with the Hepsia hosting CP come with ModSecurity, so any app that you upload or install shall be protected from the very beginning and you will not have to concern yourself with common attacks or vulnerabilities. An independent section inside Hepsia will allow you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records info about intrusions, but doesn't take actions to prevent them. What you shall discover in the logs can easily help you to secure your websites better - the IP an attack originated from, what site was attacked and in what way, what ModSecurity rule was triggered, and so forth. With this info, you'll be able to see whether a website needs an update, whether you should block IPs from accessing your web server, and so forth. In addition to the third-party commercial security rules for ModSecurity which we use, our administrators include custom ones too whenever they come across a new threat which is not yet included in the commercial bundle.