ModSecurity is a plugin for Apache web servers that acts as a web app layer firewall. It's used to stop attacks toward script-driven websites by employing security rules that contain specific expressions. In this way, the firewall can stop hacking and spamming attempts and protect even Internet sites which are not updated regularly. For instance, several unsuccessful login attempts to a script administrative area or attempts to execute a certain file with the purpose to get access to the script will trigger certain rules, so ModSecurity will stop these activities the second it discovers them. The firewall is extremely efficient because it screens the entire HTTP traffic to an Internet site in real time without slowing it down, so it could stop an attack before any harm is done. It additionally maintains an incredibly thorough log of all attack attempts which contains more info than conventional Apache logs, so you could later analyze the data and take further measures to enhance the security of your websites if necessary.
ModSecurity in Shared Website Hosting
ModSecurity can be found with each shared website hosting solution that we offer and it's switched on by default for any domain or subdomain that you include via your Hepsia CP. In the event that it interferes with any of your applications or you would like to disable it for some reason, you'll be able to do this through the ModSecurity area of Hepsia with just a click. You can also enable a passive mode, so the firewall will identify potential attacks and maintain a log, but will not take any action. You'll be able to see extensive logs in the very same section, including the IP where the attack came from, what exactly the attacker tried to do and at what time, what ModSecurity did, etc. For max safety of our customers we use a set of commercial firewall rules mixed with custom ones that are provided by our system administrators.