ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its operation and when it discovers an intrusion attempt, it blocks it. The firewall furthermore maintains a more comprehensive log for the traffic than any web server does, so you shall be able to keep track of what is going on with your sites better than if you rely merely on conventional logs. ModSecurity works with security rules based on which it helps prevent attacks. For instance, it recognizes whether somebody is attempting to log in to the admin area of a given script several times or if a request is sent to execute a file with a particular command. In these cases these attempts trigger the corresponding rules and the firewall software hinders the attempts in real time, after that records in-depth information about them within its logs. ModSecurity is amongst the most effective software firewalls available and it can protect your web applications against thousands of threats and vulnerabilities, particularly if you don’t update them or their plugins frequently.
ModSecurity in Cloud Hosting
ModSecurity is available with every single cloud hosting solution which we provide and it is turned on by default for any domain or subdomain which you include via your Hepsia Control Panel. In case it interferes with any of your applications or you would like to disable it for some reason, you will be able to accomplish that through the ModSecurity area of Hepsia with only a click. You could also enable a passive mode, so the firewall will discover potential attacks and maintain a log, but will not take any action. You can view comprehensive logs in the very same section, including the IP address where the attack came from, exactly what the attacker attempted to do and at what time, what ModSecurity did, etcetera. For max protection of our clients we use a group of commercial firewall rules mixed with custom ones that are included by our system administrators.
ModSecurity in Dedicated Hosting
If you decide to host your websites on a dedicated server with the Hepsia CP, your web apps shall be protected right away because ModSecurity is available with all Hepsia-based packages. You will be able to manage the firewall without difficulty and if needed, you'll be able to turn it off or enable its passive mode when it'll only keep a log of what's happening without taking any action to prevent potential attacks. The logs which you can find within the same section of the CP are incredibly detailed and contain information about the attacker IP, what website and file were attacked and in what ways, what rule the firewall employed to stop the intrusion, and so on. This info will enable you to take measures and boost the security of your Internet sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our admins include when they detect attacks that haven't yet been included inside the commercial pack.