ModSecurity
Find out what ModSecurity is really, how it works and precisely what it does to protect your sites and web applications.
ModSecurity is a powerful firewall for Apache web servers which is employed to prevent attacks toward web apps. It monitors the HTTP traffic to a particular Internet site in real time and blocks any intrusion attempts the instant it identifies them. The firewall uses a set of rules to do that - as an illustration, trying to log in to a script administration area unsuccessfully many times sets off one rule, sending a request to execute a certain file that could result in getting access to the site triggers a different rule, and so on. ModSecurity is one of the best firewalls available on the market and it will secure even scripts that aren't updated frequently as it can prevent attackers from employing known exploits and security holes. Incredibly detailed data about every intrusion attempt is recorded and the logs the firewall maintains are far more specific than the conventional logs created by the Apache server, so you may later analyze them and determine whether you need to take more measures so as to increase the safety of your script-driven sites.
-
ModSecurity in Web Hosting
ModSecurity is available with each and every
web hosting solution that we provide and it's turned on by default for any domain or subdomain which you add through your Hepsia CP. If it disrupts any of your apps or you'd like to disable it for some reason, you shall be able to achieve that through the ModSecurity area of Hepsia with only a click. You can also activate a passive mode, so the firewall will recognize potential attacks and keep a log, but shall not take any action. You can see comprehensive logs in the exact same section, including the IP address where the attack originated from, what exactly the attacker tried to do and at what time, what ModSecurity did, and so on. For max security of our clients we use a set of commercial firewall rules mixed with custom ones which are provided by our system admins.
-
ModSecurity in Semi-dedicated Hosting
ModSecurity is part of our
semi-dedicated hosting plans and if you choose to host your sites with us, there will not be anything special you'll need to do as the firewall is turned on by default for all domains and subdomains which you add using your hosting Control Panel. If needed, you can disable ModSecurity for a given Internet site or activate the so-called detection mode in which case the firewall will still work and record data, but will not do anything to stop potential attacks on your sites. Comprehensive logs will be readily available inside your CP and you shall be able to see what sort of attacks took place, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks came from, and so forth. We employ two kinds of rules on our servers - commercial ones from an organization that operates in the field of web security, and custom made ones that our administrators occasionally include to respond to newly discovered threats promptly.
-
ModSecurity in VPS Hosting
ModSecurity is pre-installed on all
virtual private servers that are provided with the Hepsia hosting Control Panel, so your web programs shall be secured from the instant your server is ready. The firewall is activated by default for any domain or subdomain on the Virtual Private Server, but if needed, you can disable it with a click of your mouse through the corresponding section of Hepsia. You could also set it to function in detection mode, so it will maintain a comprehensive log of any possible attacks without taking any action to prevent them. The logs are available within the same section and include info about the nature of the attack, what IP it originated from and what ModSecurity rule was activated to stop it. For optimum security, we employ not just commercial rules from a firm working in the field of web security, but also custom ones which our administrators add manually in order to react to new threats which are still not dealt with in the commercial rules.
-
ModSecurity in Dedicated Web Hosting
If you opt to host your Internet sites on a
dedicated server with the Hepsia CP, your web applications shall be secured immediately because ModSecurity is supplied with all Hepsia-based plans. You shall be able to control the firewall easily and if necessary, you will be able to turn it off or switch on its passive mode when it will only maintain a log of what's taking place without taking any action to stop possible attacks. The logs which you will find within the very same section of the Control Panel are quite detailed and include data about the attacker IP, what website and file were attacked and in what ways, what rule the firewall employed to prevent the intrusion, and so on. This info will enable you to take measures and enhance the security of your Internet sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our staff include whenever they identify attacks which have not yet been included in the commercial pack.