ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It is employed to prevent attacks toward script-driven sites through the use of security rules which contain particular expressions. In this way, the firewall can stop hacking and spamming attempts and protect even websites which aren't updated regularly. As an example, a number of unsuccessful login attempts to a script administrative area or attempts to execute a specific file with the objective to get access to the script shall trigger specific rules, so ModSecurity shall block these activities the second it discovers them. The firewall is quite efficient because it monitors the entire HTTP traffic to a site in real time without slowing it down, so it could stop an attack before any harm is done. It also keeps an incredibly comprehensive log of all attack attempts that includes more info than typical Apache logs, so you could later check out the data and take additional measures to increase the security of your websites if necessary.
ModSecurity in Cloud Website Hosting
ModSecurity is offered with each and every cloud website hosting solution that we provide and it is switched on by default for every domain or subdomain that you include via your Hepsia Control Panel. In the event that it interferes with any of your apps or you'd like to disable it for whatever reason, you will be able to do that through the ModSecurity area of Hepsia with merely a click. You may also use a passive mode, so the firewall will discover potential attacks and maintain a log, but will not take any action. You can see detailed logs in the same section, including the IP address where the attack came from, what exactly the attacker aimed to do and at what time, what ModSecurity did, etcetera. For maximum safety of our customers we use a set of commercial firewall rules blended with custom ones which are included by our system administrators.