Discover what ModSecurity is in fact, what it does and just what it can do to protect your sites and web applications.
ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It's employed to stop attacks against script-driven Internet sites through the use of security rules which contain certain expressions. This way, the firewall can block hacking and spamming attempts and preserve even Internet sites which are not updated often. As an example, multiple unsuccessful login attempts to a script admin area or attempts to execute a certain file with the objective to get access to the script shall trigger particular rules, so ModSecurity will block these activities the minute it detects them. The firewall is quite efficient since it tracks the entire HTTP traffic to a site in real time without slowing it down, so it could prevent an attack before any damage is done. It also keeps a very thorough log of all attack attempts that features more info than typical Apache logs, so you could later analyze the data and take extra measures to improve the security of your Internet sites if needed.
ModSecurity in Shared Hosting
ModSecurity is supplied with all shared hosting
machines, so if you opt to host your Internet sites with our firm, they will be shielded from a wide range of attacks. The firewall is enabled by default for all domains and subdomains, so there shall be nothing you shall have to do on your end. You will be able to stop ModSecurity for any website if required, or to activate a detection mode, so all activity will be recorded, but the firewall will not take any real action. You'll be able to view detailed logs via your Hepsia Control Panel including the IP where the attack came from, what the attacker wished to do and how ModSecurity handled the threat. As we take the protection of our customers' Internet sites very seriously, we employ a group of commercial rules which we take from one of the leading companies which maintain this type of rules. Our admins also add custom rules to make sure that your sites shall be protected against as many risks as possible.
ModSecurity in Semi-dedicated Hosting
ModSecurity is a part of our semi-dedicated hosting
packages and if you choose to host your websites with our company, there shall not be anything special you'll need to do as the firewall is switched on by default for all domains and subdomains you add through your hosting CP. If required, you'll be able to disable ModSecurity for a given website or turn on the so-called detection mode in which case the firewall will still work and record data, but shall not do anything to stop possible attacks on your sites. Comprehensive logs shall be available in your CP and you will be able to see which kind of attacks occurred, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, etc. We use two types of rules on our servers - commercial ones from a company that operates in the field of web security, and custom made ones which our admins sometimes include to respond to newly discovered risks in a timely manner.
ModSecurity in VPS Web Hosting
All virtual private servers
that are offered with the Hepsia Control Panel feature ModSecurity. The firewall is set up and switched on by default for all domains that are hosted on the web server, so there won't be anything special that you shall have to do to protect your sites. It'll take you just a click to stop ModSecurity if necessary or to turn on its passive mode so that it records what goes on without taking any actions to prevent intrusions. You'll be able to view the logs produced in passive or active mode from the corresponding section of Hepsia and find out more about the form of the attack, where it originated from, what rule the firewall employed to tackle it, and so forth. We employ a combination of commercial and custom rules in order to ensure that ModSecurity will prevent as many threats as possible, therefore enhancing the security of your web programs as much as possible.
ModSecurity in Dedicated Servers Hosting
ModSecurity is included with all dedicated servers
which are integrated with our Hepsia CP and you will not have to do anything specific on your end to use it as it's turned on by default whenever you include a new domain or subdomain on your hosting server. In case it disrupts any of your programs, you shall be able to stop it through the respective section of Hepsia, or you may leave it working in passive mode, so it'll detect attacks and shall still maintain a log for them, but won't block them. You can analyze the logs later to learn what you can do to increase the protection of your websites as you'll find details such as where an intrusion attempt came from, what Internet site was attacked and based upon what rule ModSecurity reacted, etc. The rules that we employ are commercial, hence they are frequently updated by a security provider, but to be on the safe side, our staff also add custom rules every now and then in order to deal with any new threats they have found.