ModSecurity is a plugin for Apache web servers that functions as a web app layer firewall. It is used to stop attacks towards script-driven Internet sites through the use of security rules which contain specific expressions. This way, the firewall can stop hacking and spamming attempts and preserve even sites that aren't updated on a regular basis. For instance, numerous failed login attempts to a script administrative area or attempts to execute a specific file with the objective to get access to the script will trigger certain rules, so ModSecurity shall stop these activities the minute it detects them. The firewall is quite efficient since it monitors the entire HTTP traffic to a site in real time without slowing it down, so it can easily prevent an attack before any harm is done. It furthermore keeps an incredibly thorough log of all attack attempts which features more info than typical Apache logs, so you can later examine the data and take additional measures to improve the security of your sites if required.
ModSecurity in Shared Web Hosting
We provide ModSecurity with all shared web hosting packages, so your Internet apps will be resistant to harmful attacks. The firewall is activated as standard for all domains and subdomains, but in case you'd like, you will be able to stop it via the respective section of your Hepsia Control Panel. You'll be able to also switch on a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs that you will find within Hepsia are quite detailed and feature info about the nature of any attack, when it took place and from what IP, the firewall rule that was triggered, etc. We use a range of commercial rules that are constantly updated, but sometimes our administrators add custom rules as well so as to efficiently protect the websites hosted on our servers.