ModSecurity
Find out what ModSecurity is, how it works and what exactly it does to protect your sites and apps.
ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its performance and if it discovers an intrusion attempt, it blocks it. The firewall also maintains a more comprehensive log for the site visitors than any web server does, so you shall be able to monitor what is going on with your sites a lot better than if you rely simply on standard logs. ModSecurity employs security rules based on which it helps prevent attacks. For instance, it identifies whether somebody is trying to log in to the administration area of a certain script a number of times or if a request is sent to execute a file with a particular command. In these circumstances these attempts set off the corresponding rules and the firewall program blocks the attempts immediately, then records in-depth information about them within its logs. ModSecurity is one of the most effective software firewalls available and it can protect your web applications against a huge number of threats and vulnerabilities, particularly in case you don’t update them or their plugins often.
-
ModSecurity in Shared Hosting
We provide ModSecurity with all
shared hosting packages, so your web apps will be resistant to harmful attacks. The firewall is switched on as standard for all domains and subdomains, but if you'd like, you'll be able to stop it using the respective section of your Hepsia Control Panel. You could also switch on a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs which you'll discover inside Hepsia are incredibly detailed and feature data about the nature of any attack, when it occurred and from what IP, the firewall rule which was triggered, etcetera. We employ a range of commercial rules which are often updated, but sometimes our administrators add custom rules as well so as to efficiently protect the websites hosted on our machines.
-
ModSecurity in Semi-dedicated Hosting
Any web app you install inside your new
semi-dedicated hosting account shall be protected by ModSecurity because the firewall is included with all our hosting plans and is activated by default for any domain and subdomain that you add or create using your Hepsia hosting Control Panel. You'll be able to manage ModSecurity via a dedicated area inside Hepsia where not simply could you activate or deactivate it fully, but you may also switch on a passive mode, so the firewall will not block anything, but it will still maintain a record of potential attacks. This normally requires only a mouse click and you will be able to look at the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was taken care of, and so forth. The firewall uses two groups of rules on our machines - a commercial one that we get from a third-party web security firm and a custom one that our admins update personally as to respond to recently discovered risks immediately.
-
ModSecurity in VPS Web Hosting
ModSecurity is pre-installed on all
virtual private servers that are offered with the Hepsia hosting Control Panel, so your web applications will be protected from the instant your server is ready. The firewall is activated by default for any domain or subdomain on the VPS, but if required, you could deactivate it with a click of your mouse through the corresponding section of Hepsia. You can also set it to function in detection mode, so it'll keep an extensive log of any possible attacks without taking any action to prevent them. The logs can be found in the very same section and include information regarding the nature of the attack, what IP it originated from and what ModSecurity rule was activated to stop it. For best security, we use not only commercial rules from a business working in the field of web security, but also custom ones that our admins add personally so as to react to new threats that are still not tackled in the commercial rules.
-
ModSecurity in Dedicated Servers Hosting
All of our
dedicated servers which are set up with the Hepsia hosting CP include ModSecurity, so any program which you upload or set up shall be protected from the very beginning and you won't need to bother about common attacks or vulnerabilities. An individual section in Hepsia will allow you to start or stop the firewall for each domain or subdomain, or activate a detection mode so that it records info about intrusions, but does not take actions to prevent them. What you will discover in the logs can allow you to to secure your sites better - the IP an attack came from, what website was attacked and how, what ModSecurity rule was triggered, and so on. With this info, you'll be able to see if a website needs an update, whether you need to block IPs from accessing your web server, and so on. Aside from the third-party commercial security rules for ModSecurity we use, our admins add custom ones as well every time they find a new threat that is not yet included in the commercial bundle.