ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It is used to stop attacks toward script-driven websites by employing security rules which contain specific expressions. This way, the firewall can block hacking and spamming attempts and protect even sites which aren't updated often. As an example, multiple unsuccessful login attempts to a script administrator area or attempts to execute a particular file with the intention to get access to the script will trigger specific rules, so ModSecurity will block these activities the second it detects them. The firewall is very efficient since it monitors the entire HTTP traffic to an Internet site in real time without slowing it down, so it could stop an attack before any harm is done. It also keeps an exceptionally thorough log of all attack attempts which contains more information than typical Apache logs, so you could later examine the data and take additional measures to enhance the security of your Internet sites if required.
ModSecurity in Cloud Web Hosting
ModSecurity is available with every single cloud web hosting plan which we provide and it is switched on by default for any domain or subdomain which you include through your Hepsia Control Panel. If it disrupts any of your applications or you'd like to disable it for whatever reason, you shall be able to achieve that through the ModSecurity area of Hepsia with merely a mouse click. You could also use a passive mode, so the firewall will detect potential attacks and keep a log, but will not take any action. You can see comprehensive logs in the same section, including the IP where the attack originated from, what precisely the attacker tried to do and at what time, what ModSecurity did, etcetera. For optimum protection of our clients we use a collection of commercial firewall rules combined with custom ones which are included by our system admins.