ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its overall performance and if it identifies an intrusion attempt, it blocks it. The firewall additionally maintains a more comprehensive log for the website visitors than any web server does, so you'll be able to monitor what's happening with your Internet sites better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it helps prevent attacks. For instance, it detects if anyone is trying to log in to the administration area of a specific script several times or if a request is sent to execute a file with a specific command. In these instances these attempts trigger the corresponding rules and the firewall hinders the attempts right away, and then records detailed information about them within its logs. ModSecurity is amongst the best software firewalls available and it can protect your web apps against a large number of threats and vulnerabilities, particularly in case you don’t update them or their plugins frequently.
ModSecurity in Web Hosting
We offer ModSecurity with all web hosting plans, so your web apps shall be shielded from harmful attacks. The firewall is turned on by default for all domains and subdomains, but in case you'd like, you shall be able to stop it through the respective section of your Hepsia CP. You'll be able to also switch on a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs that you will find within Hepsia are quite detailed and offer data about the nature of any attack, when it took place and from what IP, the firewall rule which was triggered, and so forth. We employ a range of commercial rules that are constantly updated, but sometimes our administrators add custom rules as well so as to better protect the websites hosted on our machines.