Web Application Firewall (WAF)
WAF is the acronym for Web Application Firewall. It is a set of tools mainly based on the ModSecurity module of the Apache server, designed to protect your website from possible external intrusions.
Activating the WAF will protect your hosting account against, among others:
• Known security vulnerabilities in CMS platforms
• Common attacks such as SQL injection, XSS, RFI, etc.
• Robots and mass scanners detected as intrusive
• Common attacks such as SQL injection, XSS, RFI, etc.
• Robots and mass scanners detected as intrusive
The security directives established in the WAF analyze requests after they have passed through our network Firewall, directly from the web server. Consequently, they can block with much greater precision the IP addresses attempting to perform illicit actions.
The system is based on a set of generic rules applied on the server that analyze your website traffic in real time.
In the following diagram, we conceptually detail how the Web Application Firewall works:
The effectiveness of the system depends on how the rules interpret the data received in web requests (from the web client). For this reason, in certain cases it may generate FALSE POSITIVES, blocking legitimate visits.
The use of WAF is completely optional. You can activate or deactivate it from the control panel by entering the hosting management section, under 'Security', in the Firewall option.
At cdmon, we recommend its use, except in exceptional compatibility cases.
If you experience false positives during certain actions on your website, contact our Technical Department (tecnico@cdmon.com), providing information about the actions performed prior to the block so that we can adjust the rules to resolve the issue.
The captcha verification system does not cover the following cases:
• Certain AJAX implementations
• Some browser cookie scenarios
• PHP automations interacting with databases
• Some browser cookie scenarios
• PHP automations interacting with databases
In the control panel, within the hosting management section, you can access the error log viewer page. This will allow you to analyze possible blocks occurring on your website.
For more information, you can contact us.
Related Articles
How to activate the Application Security Firewall
In the cdmon control panel you can activate or deactivate the application Firewall and view the graph showing the neutralized attack attempts. To activate it, you must access the hosting management section, under 'Security', and enter the Firewall ...How to manage our web hosting
With the web hosting "Control Panel", you can easily manage your hosting. The panel consists of a section with hosting information and different sections with tools. To access the hosting management panel, in the "Basic service list", click on the ...How to act if we have code injection on the web
What is code injection? A code injection or web virus attack is the intrusion of data or denial of access to a website. In this type of attack, attempts are made to modify CMS files and values as well as the structure of the web programming itself. ...How to set up web hosting aliases
Server aliases (ServerAlias) are alternative names for a hosting account. They allow you to add more than one domain to your hosting and display the same content as the main hosting. They are useful for configuring multiple domains/subdomains within ...How to renew or reactivate web hosting
Renewing or reactivating your web hosting is a quick and easy action that you can perform from your cdmon control panel. To do so, follow the instructions below. 1.- Access the management of your hosting by clicking on the Hosting option in the ...