ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its operation and when it detects an intrusion attempt, it blocks it. The firewall furthermore maintains a more thorough log for the site visitors than any web server does, so you shall be able to keep an eye on what's going on with your websites a lot better than if you rely merely on conventional logs. ModSecurity uses security rules based on which it prevents attacks. For example, it detects if somebody is trying to log in to the admin area of a given script several times or if a request is sent to execute a file with a specific command. In such circumstances these attempts trigger the corresponding rules and the software hinders the attempts right away, after that records in-depth information about them in its logs. ModSecurity is amongst the most effective software firewalls available and it can easily protect your web apps against thousands of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.
ModSecurity in Cloud Hosting
ModSecurity comes standard with all cloud hosting packages that we supply and it will be activated automatically for any domain or subdomain that you add/create inside your Hepsia hosting Control Panel. The firewall has 3 different modes, so you'll be able to switch on and deactivate it with a mouse click or set it to detection mode, so it will maintain a log of all attacks, but it shall not do anything to prevent them. The log for any of your websites will contain comprehensive information such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules we use are frequently updated and consist of both commercial ones that we get from a third-party security company and custom ones our system administrators add in the event that they detect a new type of attacks. In this way, the sites which you host here will be much more protected without any action needed on your end.