ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It's used to prevent attacks toward script-driven Internet sites by employing security rules which contain certain expressions. That way, the firewall can block hacking and spamming attempts and preserve even sites which are not updated on a regular basis. For example, multiple unsuccessful login attempts to a script admin area or attempts to execute a particular file with the purpose to get access to the script shall trigger specific rules, so ModSecurity shall block out these activities the moment it discovers them. The firewall is very efficient because it monitors the entire HTTP traffic to an Internet site in real time without slowing it down, so it will be able to stop an attack before any damage is done. It furthermore keeps an incredibly comprehensive log of all attack attempts which features more info than conventional Apache logs, so you could later analyze the data and take additional measures to increase the security of your sites if necessary.
ModSecurity in Hosting
We offer ModSecurity with all hosting solutions, so your web apps shall be resistant to harmful attacks. The firewall is activated by default for all domains and subdomains, but if you would like, you will be able to stop it through the respective part of your Hepsia Control Panel. You could also switch on a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs that you'll find in Hepsia are incredibly detailed and offer information about the nature of any attack, when it happened and from what IP, the firewall rule which was triggered, and so on. We use a group of commercial rules that are regularly updated, but sometimes our administrators add custom rules as well in order to better protect the websites hosted on our servers.