Find out how having ModSecurity enabled in your web hosting account could help silently with your site security.
ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its performance and when it identifies an intrusion attempt, it blocks it. The firewall also maintains a more comprehensive log for the traffic than any web server does, so you'll be able to keep an eye on what is going on with your sites a lot better than if you rely merely on standard logs. ModSecurity uses security rules based on which it prevents attacks. For instance, it identifies if someone is attempting to log in to the administrator area of a given script multiple times or if a request is sent to execute a file with a particular command. In these cases these attempts trigger the corresponding rules and the firewall software hinders the attempts instantly, then records in-depth details about them within its logs. ModSecurity is amongst the very best software firewalls on the market and it can easily protect your web apps against a huge number of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.
ModSecurity in Shared Hosting
ModSecurity is supplied with all shared hosting
web servers, so when you decide to host your Internet sites with our organization, they'll be protected against an array of attacks. The firewall is turned on by default for all domains and subdomains, so there'll be nothing you will need to do on your end. You shall be able to stop ModSecurity for any Internet site if necessary, or to activate a detection mode, so that all activity shall be recorded, but the firewall will not take any real action. You'll be able to view detailed logs through your Hepsia Control Panel including the IP address where the attack came from, what the attacker planned to do and how ModSecurity dealt with the threat. As we take the protection of our clients' sites seriously, we use a selection of commercial rules which we get from one of the leading firms that maintain such rules. Our administrators also add custom rules to make sure that your websites shall be protected against as many risks as possible.
ModSecurity in Semi-dedicated Hosting
Any web program that you install in your new semi-dedicated hosting
account will be protected by ModSecurity since the firewall is provided with all our hosting packages and is turned on by default for any domain and subdomain which you add or create using your Hepsia hosting CP. You shall be able to manage ModSecurity through a dedicated section in Hepsia where not only could you activate or deactivate it entirely, but you can also activate a passive mode, so the firewall won't block anything, but it'll still keep an archive of potential attacks. This requires just a click and you'll be able to look at the logs no matter if ModSecurity is in active or passive mode through the same section - what the attack was and where it originated from, how it was addressed, and so on. The firewall uses 2 sets of rules on our machines - a commercial one that we get from a third-party web security firm and a custom one that our administrators update personally as to respond to newly discovered threats at the earliest opportunity.
ModSecurity in Dedicated Hosting
All our dedicated servers
that are set up with the Hepsia hosting CP feature ModSecurity, so any program you upload or set up will be protected from the very beginning and you won't have to stress about common attacks or vulnerabilities. An independent section inside Hepsia will allow you to start or stop the firewall for every domain or subdomain, or switch on a detection mode so that it records information regarding intrusions, but doesn't take actions to prevent them. What you'll find in the logs shall allow you to to secure your Internet sites better - the IP address an attack came from, what website was attacked and in what way, what ModSecurity rule was triggered, etcetera. With this data, you'll be able to see whether a site needs an update, whether you ought to block IPs from accessing your web server, etcetera. Besides the third-party commercial security rules for ModSecurity which we use, our administrators include custom ones as well if they find a new threat that is not yet included in the commercial bundle.