Web Application Firewall (WAF)
WAF is the acronym for Web Application Firewall. It is a set of tools mainly based on the ModSecurity module of the Apache server, designed to protect your website from possible external intrusions.
Activating the WAF will protect your hosting account against, among others:
• Known security vulnerabilities in CMS platforms
• Common attacks such as SQL injection, XSS, RFI, etc.
• Robots and mass scanners detected as intrusive
• Common attacks such as SQL injection, XSS, RFI, etc.
• Robots and mass scanners detected as intrusive
The security directives established in the WAF analyze requests after they have passed through our network Firewall, directly from the web server. Consequently, they can block with much greater precision the IP addresses attempting to perform illicit actions.
The system is based on a set of generic rules applied on the server that analyze your website traffic in real time.
In the following diagram, we conceptually detail how the Web Application Firewall works:
The effectiveness of the system depends on how the rules interpret the data received in web requests (from the web client). For this reason, in certain cases it may generate FALSE POSITIVES, blocking legitimate visits.
The use of WAF is completely optional. You can activate or deactivate it from the control panel by entering the hosting management section, under 'Security', in the Firewall option.
At cdmon, we recommend its use, except in exceptional compatibility cases.
If you experience false positives during certain actions on your website, contact our Technical Department (tecnico@cdmon.com), providing information about the actions performed prior to the block so that we can adjust the rules to resolve the issue.
The captcha verification system does not cover the following cases:
• Certain AJAX implementations
• Some browser cookie scenarios
• PHP automations interacting with databases
• Some browser cookie scenarios
• PHP automations interacting with databases
In the control panel, within the hosting management section, you can access the error log viewer page. This will allow you to analyze possible blocks occurring on your website.
For more information, you can contact us.
Related Articles
How to activate the Application Security Firewall
In the cdmon control panel you can activate or deactivate the application Firewall and view the graph showing the neutralized attack attempts. To activate it, you must access the hosting management section, under 'Security', and enter the Firewall ...How to manage our web hosting
With the web hosting "Control Panel", you can easily manage your hosting. The panel consists of a section with hosting information and different sections with tools. To access the hosting management panel, in the "Basic service list", click on the ...How to set up Sucuri plugin for Wordpress
Sucuri is a powerful security plugin specifically designed for WordPress websites. It provides comprehensive protection against online threats such as malware, brute-force attacks, code injection, and more. Additionally, it includes a Web Application ...How to act if we have code injection on the web
What is code injection? A code injection or web virus attack is the intrusion of data or denial of access to a website. In this type of attack, attempts are made to modify CMS files and values as well as the structure of the web programming itself. ...Plugins to increase the security of our Wordpress
Many plugins/themes and even outdated versions of WordPress may contain security vulnerabilities in their own code, which can allow malicious code to be injected into WordPress files. You can significantly increase your WordPress security by ...