Learn what ModSecurity actually is, how it works and exactly what it can do to defend your websites and apps.
ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It is employed to stop attacks toward script-driven websites through the use of security rules that contain particular expressions. This way, the firewall can prevent hacking and spamming attempts and protect even websites that are not updated regularly. As an example, several failed login attempts to a script administrative area or attempts to execute a certain file with the intention to get access to the script shall trigger specific rules, so ModSecurity shall stop these activities the minute it detects them. The firewall is extremely efficient since it tracks the whole HTTP traffic to a website in real time without slowing it down, so it will be able to prevent an attack before any harm is done. It additionally maintains an incredibly detailed log of all attack attempts that features more information than standard Apache logs, so you could later examine the data and take additional measures to increase the security of your Internet sites if required.
ModSecurity in Cloud Web Hosting
ModSecurity is available on all cloud web hosting
machines, so if you decide to host your sites with our firm, they'll be resistant to an array of attacks. The firewall is turned on as standard for all domains and subdomains, so there will be nothing you'll need to do on your end. You'll be able to stop ModSecurity for any site if needed, or to enable a detection mode, so that all activity shall be recorded, but the firewall won't take any real action. You'll be able to view specific logs from your Hepsia Control Panel including the IP where the attack came from, what the attacker planned to do and how ModSecurity dealt with the threat. Since we take the safety of our customers' sites seriously, we use a set of commercial rules that we get from one of the top companies which maintain this type of rules. Our admins also add custom rules to ensure that your Internet sites will be shielded from as many risks as possible.
ModSecurity in Semi-dedicated Hosting
We have included ModSecurity as a standard in all semi-dedicated hosting
plans, so your web applications shall be protected whenever you install them under any domain or subdomain. The Hepsia Control Panel which comes with the semi-dedicated accounts will permit you to switch on or turn off the firewall for any site with a click. You shall also be able to turn on a passive detection mode through which ModSecurity will maintain a log of possible attacks without really preventing them. The comprehensive logs contain the nature of the attack and what ModSecurity response that attack generated, where it originated from, and so on. The list of rules which we use is frequently updated in order to match any new risks that might appear on the Internet and it includes both commercial rules that we get from a security company and custom-written ones which our admins add in case they find a threat that is not present in the commercial list yet.
ModSecurity in VPS Hosting
Safety is vital to us, so we set up ModSecurity on all virtual private servers
which are provided with the Hepsia CP by default. The firewall could be managed via a dedicated section in Hepsia and is activated automatically when you include a new domain or create a subdomain, so you won't need to do anything by hand. You'll also be able to deactivate it or switch on the so-called detection mode, so it'll keep a log of potential attacks that you can later analyze, but won't stop them. The logs in both passive and active modes offer information about the type of the attack and how it was prevented, what IP address it came from and other valuable information which could help you to tighten the security of your sites by updating them or blocking IPs, as an example. Besides the commercial rules that we get for ModSecurity from a third-party security company, we also use our own rules as every now and then we find specific attacks which aren't yet present inside the commercial group. That way, we can easily improve the security of your Virtual private server promptly as opposed to awaiting an official update.
ModSecurity in Dedicated Web Hosting
When you decide to host your Internet sites on a dedicated server
with the Hepsia Control Panel, your web apps will be protected right from the start since ModSecurity is available with all Hepsia-based plans. You'll be able to manage the firewall without difficulty and if needed, you shall be able to turn it off or switch on its passive mode when it'll only maintain a log of what is occurring without taking any action to stop possible attacks. The logs that you will find within the same section of the CP are extremely detailed and feature information about the attacker IP address, what website and file were attacked and in what ways, what rule the firewall used to prevent the intrusion, and so forth. This data will allow you to take measures and increase the protection of your websites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones which our administrators include every time they detect attacks that have not yet been included within the commercial pack.