ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It's used to stop attacks against script-driven sites through the use of security rules that contain certain expressions. In this way, the firewall can block hacking and spamming attempts and protect even sites that are not updated regularly. For instance, numerous unsuccessful login attempts to a script administrator area or attempts to execute a particular file with the intention to get access to the script will trigger certain rules, so ModSecurity shall stop these activities the instant it identifies them. The firewall is incredibly efficient since it tracks the entire HTTP traffic to an Internet site in real time without slowing it down, so it can prevent an attack before any harm is done. It also keeps an exceptionally detailed log of all attack attempts that features more info than standard Apache logs, so you can later examine the data and take additional measures to increase the security of your sites if required.
ModSecurity in Cloud Hosting
We offer ModSecurity with all cloud hosting packages, so your Internet apps shall be resistant to malicious attacks. The firewall is turned on by default for all domains and subdomains, but in case you'd like, you shall be able to stop it via the respective area of your Hepsia CP. You could also switch on a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs that you shall discover in Hepsia are quite detailed and feature information about the nature of any attack, when it happened and from what IP, the firewall rule which was triggered, and so on. We employ a group of commercial rules that are regularly updated, but sometimes our administrators include custom rules as well in order to better protect the Internet sites hosted on our servers.