ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It is used to stop attacks toward script-driven Internet sites through the use of security rules that contain particular expressions. In this way, the firewall can prevent hacking and spamming attempts and shield even sites which aren't updated regularly. As an example, several failed login attempts to a script admin area or attempts to execute a specific file with the intention to get access to the script will trigger particular rules, so ModSecurity shall stop these activities the second it discovers them. The firewall is quite efficient because it screens the whole HTTP traffic to an Internet site in real time without slowing it down, so it could stop an attack before any damage is done. It furthermore maintains an exceptionally detailed log of all attack attempts that contains more info than typical Apache logs, so you could later check out the data and take extra measures to boost the security of your Internet sites if necessary.
ModSecurity in Website Hosting
ModSecurity is offered with every single website hosting solution that we offer and it's activated by default for any domain or subdomain that you include through your Hepsia CP. In the event that it interferes with any of your apps or you would like to disable it for some reason, you will be able to do this through the ModSecurity section of Hepsia with simply a click. You could also activate a passive mode, so the firewall will discover potential attacks and keep a log, but will not take any action. You can see extensive logs in the same section, including the IP where the attack came from, exactly what the attacker attempted to do and at what time, what ModSecurity did, and so forth. For optimum protection of our clients we use a collection of commercial firewall rules combined with custom ones that are provided by our system administrators.