ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It's employed to stop attacks toward script-driven Internet sites by employing security rules that contain certain expressions. In this way, the firewall can prevent hacking and spamming attempts and preserve even Internet sites which aren't updated regularly. For example, numerous failed login attempts to a script administrator area or attempts to execute a certain file with the intention to get access to the script will trigger certain rules, so ModSecurity shall stop these activities the minute it identifies them. The firewall is extremely efficient as it monitors the whole HTTP traffic to an Internet site in real time without slowing it down, so it can easily stop an attack before any harm is done. It furthermore maintains an incredibly thorough log of all attack attempts that includes more info than conventional Apache logs, so you can later analyze the data and take extra measures to increase the security of your websites if required.

ModSecurity in Hosting

We provide ModSecurity with all hosting plans, so your web applications will be protected against malicious attacks. The firewall is turned on as standard for all domains and subdomains, but if you would like, you will be able to stop it through the respective part of your Hepsia Control Panel. You'll be able to also switch on a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you will discover in Hepsia are incredibly detailed and offer data about the nature of any attack, when it transpired and from what IP address, the firewall rule which was triggered, and so forth. We use a range of commercial rules that are regularly updated, but sometimes our admins add custom rules as well so as to better protect the sites hosted on our servers.