Find out what ModSecurity is in fact, how it operates and what actually it does to defend your web sites and web applications.
ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its functionality and if it discovers an intrusion attempt, it blocks it. The firewall also keeps a more thorough log for the site visitors than any server does, so you'll manage to keep track of what's going on with your websites much better than if you rely merely on standard logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it detects if someone is trying to log in to the administrator area of a specific script a number of times or if a request is sent to execute a file with a certain command. In such circumstances these attempts set off the corresponding rules and the firewall hinders the attempts in real time, after that records comprehensive info about them within its logs. ModSecurity is among the most effective software firewalls out there and it can protect your web apps against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.
ModSecurity in Cloud Hosting
ModSecurity comes standard with all cloud hosting
solutions which we offer and it will be switched on automatically for any domain or subdomain you add/create inside your Hepsia hosting CP. The firewall has 3 different modes, so you can activate and deactivate it with a click or set it to detection mode, so it shall maintain a log of all attacks, but it will not do anything to prevent them. The log for any of your sites shall feature comprehensive information such as the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules that we use are constantly updated and consist of both commercial ones that we get from a third-party security company and custom ones which our system administrators include in the event that they detect a new type of attacks. This way, the websites that you host here will be much more protected with no action required on your end.
ModSecurity in Semi-dedicated Hosting
Any web application that you set up within your new semi-dedicated hosting
account will be protected by ModSecurity since the firewall comes with all our hosting plans and is switched on by default for any domain and subdomain that you add or create through your Hepsia hosting CP. You shall be able to manage ModSecurity through a dedicated area within Hepsia where not simply could you activate or deactivate it entirely, but you may also activate a passive mode, so the firewall shall not block anything, but it will still keep an archive of possible attacks. This takes only a mouse click and you will be able to see the logs regardless of if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was handled, etcetera. The firewall uses 2 sets of rules on our servers - a commercial one that we get from a third-party web security firm and a custom one that our admins update manually as to respond to newly discovered risks as fast as possible.
ModSecurity in VPS
ModSecurity is included with all Hepsia-based virtual private servers
that we offer and it shall be turned on automatically for every new domain or subdomain that you include on the machine. That way, any web application which you install will be protected right away without doing anything by hand on your end. The firewall can be managed via the section of the Control Panel which bears the same name. This is the area whereyou can disable ModSecurity or let its passive mode, so it will not take any action against threats, but will still keep a thorough log. The recorded data is available in the same area as well and you shall be able to see what IPs any attacks originated from so that you can block them, what the nature of the attempted attacks was and in accordance with what security rules ModSecurity responded. The rules we employ on our servers are a mix between commercial ones we obtain from a security firm and custom ones which are added by our admins to maximize the security of any web applications hosted on our end.
ModSecurity in Dedicated Hosting
ModSecurity is provided with all dedicated servers
that are integrated with our Hepsia Control Panel and you'll not have to do anything specific on your end to use it because it's activated by default whenever you add a new domain or subdomain on your hosting server. If it interferes with some of your applications, you will be able to stop it through the respective section of Hepsia, or you may leave it working in passive mode, so it'll detect attacks and will still keep a log for them, but shall not stop them. You could look at the logs later to learn what you can do to boost the protection of your websites since you will find info such as where an intrusion attempt came from, what site was attacked and based upon what rule ModSecurity responded, and so forth. The rules which we employ are commercial, therefore they're regularly updated by a security firm, but to be on the safe side, our staff also include custom rules occasionally in order to react to any new threats they have found.