Find out what ModSecurity is, how it works and what exactly it does to defend your websites and apps.
ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It is used to prevent attacks against script-driven Internet sites through the use of security rules which contain particular expressions. That way, the firewall can prevent hacking and spamming attempts and protect even Internet sites which aren't updated regularly. For instance, several failed login attempts to a script admin area or attempts to execute a certain file with the purpose to get access to the script will trigger certain rules, so ModSecurity shall block these activities the minute it discovers them. The firewall is quite efficient because it tracks the whole HTTP traffic to an Internet site in real time without slowing it down, so it could prevent an attack before any damage is done. It also maintains an exceptionally comprehensive log of all attack attempts that features more info than conventional Apache logs, so you can later analyze the data and take further measures to boost the security of your Internet sites if needed.
ModSecurity in Cloud Web Hosting
ModSecurity is provided with all cloud web hosting
machines, so if you choose to host your websites with our business, they'll be shielded from an array of attacks. The firewall is turned on as standard for all domains and subdomains, so there shall be nothing you will have to do on your end. You will be able to stop ModSecurity for any site if needed, or to activate a detection mode, so all activity will be recorded, but the firewall shall not take any real action. You shall be able to view detailed logs using your Hepsia CP including the IP where the attack came from, what the attacker wanted to do and how ModSecurity handled the threat. As we take the protection of our customers' websites seriously, we use a set of commercial rules that we take from one of the best companies which maintain such rules. Our administrators also add custom rules to make sure that your Internet sites shall be protected against as many threats as possible.
ModSecurity in Semi-dedicated Servers
We have included ModSecurity as a standard within all semi-dedicated server
plans, so your web apps shall be protected as soon as you set them up under any domain or subdomain. The Hepsia Control Panel that is included with the semi-dedicated accounts will permit you to switch on or disable the firewall for any Internet site with a mouse click. You shall also have the ability to turn on a passive detection mode in which ModSecurity shall keep a log of potential attacks without really stopping them. The detailed logs contain the nature of the attack and what ModSecurity response that attack caused, where it originated from, and so forth. The list of rules that we use is frequently updated in order to match any new threats that could appear on the Internet and it features both commercial rules that we get from a security firm and custom-written ones that our administrators add in case they discover a threat that's not present inside the commercial list yet.