ModSecurity
Find out what ModSecurity is, how it works and precisely what it does to protect your websites and apps.
ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It's employed to stop attacks against script-driven Internet sites by employing security rules which contain particular expressions. This way, the firewall can stop hacking and spamming attempts and preserve even websites which aren't updated often. For example, numerous unsuccessful login attempts to a script administrator area or attempts to execute a particular file with the intention to get access to the script shall trigger certain rules, so ModSecurity will block out these activities the instant it discovers them. The firewall is very efficient because it screens the entire HTTP traffic to a site in real time without slowing it down, so it will be able to stop an attack before any damage is done. It additionally keeps an incredibly detailed log of all attack attempts that includes more info than traditional Apache logs, so you could later check out the data and take extra measures to improve the security of your Internet sites if necessary.
-
ModSecurity in Website Hosting
ModSecurity is available with each and every
website hosting solution which we provide and it is activated by default for every domain or subdomain which you include via your Hepsia CP. In case it disrupts any of your programs or you would like to disable it for any reason, you'll be able to do this through the ModSecurity area of Hepsia with simply a mouse click. You could also use a passive mode, so the firewall will detect possible attacks and maintain a log, but shall not take any action. You can view comprehensive logs in the exact same section, including the IP where the attack came from, what exactly the attacker aimed to do and at what time, what ModSecurity did, etc. For maximum safety of our clients we use a set of commercial firewall rules combined with custom ones which are included by our system administrators.
-
ModSecurity in Semi-dedicated Hosting
We have incorporated ModSecurity as a standard inside all
semi-dedicated hosting plans, so your web applications shall be protected the instant you set them up under any domain or subdomain. The Hepsia CP that is included with the semi-dedicated accounts will permit you to enable or turn off the firewall for any Internet site with a mouse click. You will also be able to switch on a passive detection mode in which ModSecurity shall maintain a log of possible attacks without really preventing them. The thorough logs contain the nature of the attack and what ModSecurity response that attack generated, where it originated from, etcetera. The list of rules we use is regularly updated in order to match any new threats that might appear on the Internet and it comes with both commercial rules that we get from a security business and custom-written ones that our administrators add if they find a threat that is not present in the commercial list yet.
-
ModSecurity in VPS Hosting
Protection is extremely important to us, so we install ModSecurity on all
virtual private servers which are provided with the Hepsia CP as a standard. The firewall can be managed through a dedicated section inside Hepsia and is switched on automatically when you include a new domain or create a subdomain, so you'll not have to do anything personally. You'll also be able to disable it or switch on the so-called detection mode, so it will keep a log of potential attacks you can later study, but won't stop them. The logs in both passive and active modes include information about the kind of the attack and how it was eliminated, what IP address it came from and other useful data which might help you to tighten the security of your Internet sites by updating them or blocking IPs, for example. In addition to the commercial rules we get for ModSecurity from a third-party security enterprise, we also implement our own rules because every now and then we identify specific attacks which aren't yet present within the commercial package. This way, we can enhance the security of your Virtual private server in a timely manner as opposed to awaiting an official update.
-
ModSecurity in Dedicated Web Hosting
ModSecurity is included with all
dedicated servers that are integrated with our Hepsia Control Panel and you won't have to do anything specific on your end to use it because it is switched on by default each time you include a new domain or subdomain on your hosting server. In the event that it disrupts any of your programs, you'll be able to stop it through the respective section of Hepsia, or you may leave it operating in passive mode, so it'll identify attacks and shall still keep a log for them, but will not prevent them. You could examine the logs later to find out what you can do to increase the protection of your websites since you'll find details such as where an intrusion attempt came from, what website was attacked and based upon what rule ModSecurity responded, and so forth. The rules which we employ are commercial, therefore they're constantly updated by a security provider, but to be on the safe side, our administrators also include custom rules once in a while as to react to any new threats they have discovered.