ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It is employed to stop attacks against script-driven Internet sites by using security rules which contain particular expressions. That way, the firewall can prevent hacking and spamming attempts and preserve even sites that aren't updated regularly. As an example, several unsuccessful login attempts to a script administrative area or attempts to execute a specific file with the objective to get access to the script will trigger specific rules, so ModSecurity shall stop these activities the instant it identifies them. The firewall is quite efficient as it screens the whole HTTP traffic to an Internet site in real time without slowing it down, so it can prevent an attack before any damage is done. It furthermore maintains an incredibly comprehensive log of all attack attempts which features more information than standard Apache logs, so you could later analyze the data and take additional measures to enhance the security of your sites if necessary.
ModSecurity in Cloud Hosting
ModSecurity is offered with each cloud hosting solution that we offer and it is switched on by default for any domain or subdomain which you include via your Hepsia CP. In case it disrupts any of your applications or you would like to disable it for whatever reason, you'll be able to do that through the ModSecurity area of Hepsia with merely a click. You may also activate a passive mode, so the firewall will detect possible attacks and keep a log, but shall not take any action. You can view extensive logs in the very same section, including the IP address where the attack originated from, exactly what the attacker tried to do and at what time, what ModSecurity did, etc. For maximum protection of our customers we use a collection of commercial firewall rules blended with custom ones which are included by our system administrators.