ModSecurity
Find out how having ModSecurity allowed in your web hosting account can help silently with your website security.
ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its overall performance and in case it detects an intrusion attempt, it prevents it. The firewall also maintains a more detailed log for the site visitors than any server does, so you will manage to monitor what is going on with your Internet sites better than if you rely merely on conventional logs. ModSecurity uses security rules based on which it stops attacks. For example, it identifies if somebody is attempting to log in to the administrator area of a specific script multiple times or if a request is sent to execute a file with a certain command. In such cases these attempts set off the corresponding rules and the software hinders the attempts immediately, then records detailed information about them within its logs. ModSecurity is among the very best software firewalls available and it can easily protect your web applications against a huge number of threats and vulnerabilities, especially if you don’t update them or their plugins often.
-
ModSecurity in Cloud Hosting
ModSecurity comes by default with all
cloud hosting packages which we supply and it'll be switched on automatically for any domain or subdomain which you add/create in your Hepsia hosting Control Panel. The firewall has three different modes, so you can switch on and disable it with only a mouse click or set it to detection mode, so it will maintain a log of all attacks, but it'll not do anything to stop them. The log for any of your Internet sites will contain in-depth info which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules that we use are frequently updated and consist of both commercial ones we get from a third-party security business and custom ones which our system admins include in the event that they detect a new type of attacks. This way, the Internet sites which you host here will be a lot more protected without any action needed on your end.
-
ModSecurity in Semi-dedicated Servers
ModSecurity is a part of our
semi-dedicated server solutions and if you choose to host your websites with our company, there shall not be anything special you'll have to do as the firewall is switched on by default for all domains and subdomains you add via your hosting CP. If required, you'll be able to disable ModSecurity for a given Internet site or activate the so-called detection mode in which case the firewall shall still work and record info, but won't do anything to prevent potential attacks on your websites. Detailed logs will be readily available in your Control Panel and you will be able to see what type of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks originated from, etc. We use 2 types of rules on our servers - commercial ones from a business that operates in the field of web security, and custom made ones which our admins occasionally include to respond to newly identified risks promptly.
-
ModSecurity in VPS Servers
ModSecurity is included with all Hepsia-based
VPS servers that we offer and it will be turned on automatically for any new domain or subdomain which you include on the web server. This way, any web app you install will be protected right from the start without doing anything by hand on your end. The firewall can be managed from the section of the CP which has the same name. This is the location in whichyou can switch off ModSecurity or enable its passive mode, so it shall not take any action against threats, but will still keep a thorough log. The recorded information is available within the same section as well and you'll be able to see what IPs any attacks came from so that you block them, what the nature of the attempted attacks was and based upon what security rules ModSecurity responded. The rules that we employ on our servers are a mix between commercial ones we get from a security organization and custom ones that are included by our administrators to maximize the security of any web applications hosted on our end.
-
ModSecurity in Dedicated Servers
ModSecurity is provided with all
dedicated servers which are set up with our Hepsia CP and you will not need to do anything specific on your end to employ it since it's turned on by default each time you add a new domain or subdomain on your web server. In the event that it interferes with some of your applications, you will be able to stop it via the respective part of Hepsia, or you may leave it working in passive mode, so it will detect attacks and will still keep a log for them, but will not stop them. You'll be able to examine the logs later to learn what you can do to increase the security of your websites as you'll find information such as where an intrusion attempt originated from, what website was attacked and based on what rule ModSecurity reacted, etcetera. The rules we employ are commercial, therefore they are constantly updated by a security company, but to be on the safe side, our admins also include custom rules occasionally in order to react to any new threats they have found.