ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It is employed to stop attacks toward script-driven websites through the use of security rules that contain specific expressions. That way, the firewall can prevent hacking and spamming attempts and shield even websites which are not updated on a regular basis. As an example, several failed login attempts to a script administrator area or attempts to execute a particular file with the intention to get access to the script will trigger specific rules, so ModSecurity will stop these activities the instant it discovers them. The firewall is quite efficient as it screens the whole HTTP traffic to a website in real time without slowing it down, so it could stop an attack before any damage is done. It additionally keeps a very detailed log of all attack attempts which features more information than standard Apache logs, so you could later analyze the data and take additional measures to increase the security of your websites if needed.
ModSecurity in Cloud Hosting
We offer ModSecurity with all cloud hosting plans, so your web apps will be resistant to destructive attacks. The firewall is activated by default for all domains and subdomains, but in case you'd like, you shall be able to stop it through the respective part of your Hepsia CP. You could also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you shall find in Hepsia are quite detailed and feature info about the nature of any attack, when it happened and from what IP, the firewall rule that was triggered, etc. We use a group of commercial rules which are frequently updated, but sometimes our admins add custom rules as well in order to better protect the sites hosted on our servers.