ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It's employed to prevent attacks against script-driven Internet sites by employing security rules which contain specific expressions. This way, the firewall can stop hacking and spamming attempts and shield even Internet sites which aren't updated regularly. As an example, multiple unsuccessful login attempts to a script administrative area or attempts to execute a particular file with the purpose to get access to the script shall trigger particular rules, so ModSecurity shall stop these activities the instant it identifies them. The firewall is extremely efficient since it monitors the entire HTTP traffic to an Internet site in real time without slowing it down, so it will be able to stop an attack before any harm is done. It also maintains an exceptionally thorough log of all attack attempts which contains more information than standard Apache logs, so you can later check out the data and take additional measures to increase the security of your websites if required.
ModSecurity in Cloud Website Hosting
ModSecurity is offered with each and every cloud website hosting package which we provide and it's activated by default for any domain or subdomain which you add through your Hepsia CP. If it disrupts any of your programs or you'd like to disable it for some reason, you will be able to do this through the ModSecurity section of Hepsia with just a mouse click. You could also activate a passive mode, so the firewall will identify potential attacks and keep a log, but will not take any action. You can view detailed logs in the exact same section, including the IP address where the attack came from, what precisely the attacker attempted to do and at what time, what ModSecurity did, and so forth. For max protection of our clients we use a collection of commercial firewall rules combined with custom ones which are provided by our system admins.