ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It is employed to stop attacks against script-driven websites by employing security rules that contain specific expressions. This way, the firewall can stop hacking and spamming attempts and protect even websites which aren't updated on a regular basis. For instance, numerous unsuccessful login attempts to a script admin area or attempts to execute a certain file with the purpose to get access to the script shall trigger specific rules, so ModSecurity will stop these activities the moment it detects them. The firewall is incredibly efficient because it tracks the entire HTTP traffic to a site in real time without slowing it down, so it will be able to stop an attack before any damage is done. It also keeps an exceptionally detailed log of all attack attempts that features more information than traditional Apache logs, so you could later analyze the data and take additional measures to enhance the security of your sites if necessary.
ModSecurity in Cloud Hosting
ModSecurity is provided with all cloud hosting web servers, so if you opt to host your websites with our organization, they shall be resistant to an array of attacks. The firewall is enabled by default for all domains and subdomains, so there shall be nothing you shall have to do on your end. You'll be able to stop ModSecurity for any website if needed, or to activate a detection mode, so that all activity shall be recorded, but the firewall won't take any real action. You'll be able to view detailed logs through your Hepsia CP including the IP address where the attack came from, what the attacker wished to do and how ModSecurity addressed the threat. Since we take the protection of our clients' Internet sites very seriously, we employ a collection of commercial rules that we take from one of the leading companies that maintain this sort of rules. Our admins also include custom rules to ensure that your websites will be resistant to as many risks as possible.