Find out what ModSecurity is, how it functions and just what it does to protect your Internet sites and applications.
ModSecurity is an efficient firewall for Apache web servers that is used to prevent attacks towards web applications. It keeps track of the HTTP traffic to a specific site in real time and prevents any intrusion attempts as soon as it discovers them. The firewall relies on a set of rules to do that - for instance, trying to log in to a script administrator area without success several times triggers one rule, sending a request to execute a specific file which could result in getting access to the Internet site triggers a different rule, etc. ModSecurity is one of the best firewalls available on the market and it will protect even scripts that aren't updated on a regular basis as it can prevent attackers from employing known exploits and security holes. Incredibly detailed data about every intrusion attempt is recorded and the logs the firewall maintains are much more detailed than the regular logs provided by the Apache server, so you can later take a look at them and determine whether you need to take additional measures in order to improve the protection of your script-driven Internet sites.
ModSecurity in Cloud Website Hosting
We offer ModSecurity with all cloud website hosting
packages, so your Internet apps shall be resistant to malicious attacks. The firewall is switched on as standard for all domains and subdomains, but in case you would like, you'll be able to stop it via the respective section of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs that you'll find in Hepsia are incredibly detailed and feature info about the nature of any attack, when it transpired and from what IP address, the firewall rule which was triggered, and so on. We use a set of commercial rules which are often updated, but sometimes our administrators include custom rules as well so as to efficiently protect the websites hosted on our machines.
ModSecurity in Semi-dedicated Hosting
Any web app which you install within your new semi-dedicated hosting
account shall be protected by ModSecurity since the firewall comes with all our hosting packages and is activated by default for any domain and subdomain you include or create via your Hepsia hosting CP. You shall be able to manage ModSecurity through a dedicated area in Hepsia where not simply could you activate or deactivate it entirely, but you can also activate a passive mode, so the firewall won't stop anything, but it'll still keep an archive of potential attacks. This normally requires just a mouse click and you will be able to view the logs regardless if ModSecurity is in active or passive mode through the same section - what the attack was and where it came from, how it was taken care of, etcetera. The firewall employs 2 groups of rules on our servers - a commercial one that we get from a third-party web security firm and a custom one that our admins update manually in order to respond to recently discovered threats as soon as possible.
ModSecurity in VPS
Safety is essential to us, so we install ModSecurity on all virtual private servers
that are made available with the Hepsia CP as a standard. The firewall can be managed through a dedicated section within Hepsia and is switched on automatically when you add a new domain or generate a subdomain, so you won't have to do anything personally. You shall also be able to deactivate it or turn on the so-called detection mode, so it will maintain a log of potential attacks you can later examine, but shall not block them. The logs in both passive and active modes contain information about the kind of the attack and how it was prevented, what IP address it came from and other valuable data which could help you to tighten the security of your websites by updating them or blocking IPs, for instance. Besides the commercial rules that we get for ModSecurity from a third-party security company, we also use our own rules as from time to time we identify specific attacks that are not yet present in the commercial group. This way, we can enhance the protection of your VPS instantly rather than awaiting a certified update.
ModSecurity in Dedicated Hosting
If you choose to host your sites on a dedicated server
with the Hepsia CP, your web apps will be secured straight away since ModSecurity is provided with all Hepsia-based packages. You shall be able to regulate the firewall effortlessly and if required, you will be able to turn it off or enable its passive mode when it shall only keep a log of what's occurring without taking any action to prevent possible attacks. The logs which you'll find inside the very same section of the Control Panel are really detailed and feature details about the attacker IP address, what website and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, and so on. This info shall permit you to take measures and increase the protection of your websites even more. To be on the safe side, we use not only commercial rules, but also custom-made ones that our admins include when they identify attacks which haven't yet been included in the commercial pack.