Protect Your site with mod_security rules

As a company, we utilize mod_security rules which are global to all sites. We do this to help protect sites which may not be actively maintained, which will still cause issues for other users when exploited. However, if you require further protection by mod_security, it is very possible to include rules specific for your domain, without impacting the other users on the server. To do this, you simply need to add to the .htaccess file in the public_html directory with the following:

<IfModule mod_security.c>
</IfModule>

Then, if you find any rules you wish to utilize, or if you feel confident on making your own rules, you simply place the rules in between the two IfModule blocks. Voila! Custom application firewall rules!

  • 5 Users Found This Useful
Was this answer helpful?

Related Articles

If my website got hacked, what to do?

Here are some tips to keep your site secure. This was primarily written in response to a hacked...

How can I prevent hacking?

The most important thing to do is keep your passwords a secret. If you must give a password...

How to clear your DNS Cache

Overview Your DNS cache stores the locations (IP addresses) of web servers that contain web...

ModSecurity Enable By Default (Wordpress Issues)

Hello Friends,We have Enabled "ModSecurity" feature on our all servers, Due to some security...