ModSecurity
Find out what ModSecurity is in fact, the way it works and what precisely it does to guard your websites and web applications.
ModSecurity is a highly effective firewall for Apache web servers that's used to prevent attacks towards web apps. It monitors the HTTP traffic to a certain site in real time and stops any intrusion attempts the instant it detects them. The firewall relies on a set of rules to accomplish that - for instance, trying to log in to a script administrator area unsuccessfully several times triggers one rule, sending a request to execute a certain file that may result in accessing the site triggers a different rule, and so on. ModSecurity is among the best firewalls on the market and it'll preserve even scripts that aren't updated often because it can prevent attackers from employing known exploits and security holes. Incredibly comprehensive information about each and every intrusion attempt is recorded and the logs the firewall keeps are a lot more detailed than the standard logs provided by the Apache server, so you could later take a look at them and decide whether you need to take more measures so as to increase the security of your script-driven websites.
-
ModSecurity in Shared Website Hosting
ModSecurity comes by default with all
shared website hosting packages that we offer and it shall be turned on automatically for any domain or subdomain you add/create within your Hepsia hosting CP. The firewall has 3 different modes, so you could activate and deactivate it with just a click or set it to detection mode, so it will keep a log of all attacks, but it will not do anything to stop them. The log for each of your sites will include comprehensive info including the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules that we use are constantly updated and comprise of both commercial ones which we get from a third-party security business and custom ones our system administrators add in case that they detect a new type of attacks. That way, the Internet sites which you host here shall be far more protected with no action needed on your end.
-
ModSecurity in Semi-dedicated Servers
ModSecurity is part of our
semi-dedicated server solutions and if you decide to host your Internet sites with us, there won't be anything special you'll need to do as the firewall is switched on by default for all domains and subdomains which you add via your hosting Control Panel. If required, you'll be able to disable ModSecurity for a given Internet site or enable the so-called detection mode in which case the firewall will still work and record information, but shall not do anything to prevent potential attacks on your websites. Comprehensive logs shall be accessible inside your CP and you will be able to see which kind of attacks took place, what security rules were triggered and how the firewall handled the threats, what IP addresses the attacks came from, and so forth. We employ 2 sorts of rules on our servers - commercial ones from a firm that operates in the field of web security, and custom ones which our admins sometimes add to respond to newly discovered risks on time.
-
ModSecurity in Dedicated Servers
All of our
dedicated servers that are set up with the Hepsia hosting CP come with ModSecurity, so any program which you upload or set up shall be properly secured from the very beginning and you'll not need to concern yourself with common attacks or vulnerabilities. A separate section in Hepsia will enable you to start or stop the firewall for any domain or subdomain, or turn on a detection mode so that it records info about intrusions, but doesn't take actions to prevent them. What you shall find in the logs shall help you to secure your Internet sites better - the IP address an attack originated from, what website was attacked and in what way, what ModSecurity rule was triggered, etc. With this information, you'll be able to see whether a website needs an update, if you should block IPs from accessing your server, and so on. Aside from the third-party commercial security rules for ModSecurity we use, our administrators include custom ones too whenever they discover a new threat which is not yet a part of the commercial bundle.