ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It's used to stop attacks toward script-driven sites by using security rules that contain specific expressions. In this way, the firewall can block hacking and spamming attempts and shield even Internet sites which aren't updated frequently. For example, multiple unsuccessful login attempts to a script admin area or attempts to execute a certain file with the intention to get access to the script shall trigger certain rules, so ModSecurity shall stop these activities the minute it identifies them. The firewall is incredibly efficient because it tracks the entire HTTP traffic to a site in real time without slowing it down, so it will be able to stop an attack before any damage is done. It furthermore keeps an exceptionally thorough log of all attack attempts that includes more info than typical Apache logs, so you could later check out the data and take extra measures to increase the security of your sites if needed.

ModSecurity in Cloud Website Hosting

We provide ModSecurity with all cloud website hosting solutions, so your Internet applications shall be protected against destructive attacks. The firewall is switched on by default for all domains and subdomains, but if you would like, you'll be able to stop it through the respective section of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs that you shall find in Hepsia are quite detailed and offer data about the nature of any attack, when it transpired and from what IP address, the firewall rule which was triggered, and so on. We use a range of commercial rules which are constantly updated, but sometimes our administrators include custom rules as well so as to efficiently protect the websites hosted on our machines.