ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It's employed to prevent attacks toward script-driven Internet sites through the use of security rules which contain particular expressions. In this way, the firewall can prevent hacking and spamming attempts and shield even websites which are not updated often. For example, several unsuccessful login attempts to a script admin area or attempts to execute a particular file with the objective to get access to the script shall trigger certain rules, so ModSecurity will stop these activities the minute it identifies them. The firewall is very efficient since it monitors the entire HTTP traffic to a site in real time without slowing it down, so it can prevent an attack before any damage is done. It additionally keeps an exceptionally thorough log of all attack attempts that contains more info than conventional Apache logs, so you can later check out the data and take additional measures to boost the security of your sites if necessary.
ModSecurity in Web Hosting
ModSecurity is available with every single web hosting plan which we offer and it's switched on by default for every domain or subdomain that you add through your Hepsia Control Panel. In case it interferes with any of your apps or you'd like to disable it for any reason, you will be able to accomplish that through the ModSecurity section of Hepsia with just a click. You may also use a passive mode, so the firewall will identify possible attacks and maintain a log, but shall not take any action. You can view comprehensive logs in the same section, including the IP address where the attack came from, what exactly the attacker attempted to do and at what time, what ModSecurity did, etc. For optimum safety of our customers we use a group of commercial firewall rules combined with custom ones which are provided by our system admins.