ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It's employed to prevent attacks towards script-driven sites through the use of security rules that contain particular expressions. That way, the firewall can block hacking and spamming attempts and protect even websites which are not updated often. For instance, multiple unsuccessful login attempts to a script admin area or attempts to execute a particular file with the intention to get access to the script shall trigger particular rules, so ModSecurity will stop these activities the second it detects them. The firewall is extremely efficient because it screens the whole HTTP traffic to an Internet site in real time without slowing it down, so it can stop an attack before any harm is done. It additionally maintains a very detailed log of all attack attempts that contains more info than conventional Apache logs, so you can later check out the data and take additional measures to increase the security of your sites if needed.
ModSecurity in Website Hosting
ModSecurity is available on all website hosting web servers, so when you decide to host your Internet sites with our organization, they will be shielded from a wide array of attacks. The firewall is enabled as standard for all domains and subdomains, so there will be nothing you shall have to do on your end. You shall be able to stop ModSecurity for any site if necessary, or to activate a detection mode, so all activity shall be recorded, but the firewall shall not take any real action. You will be able to view comprehensive logs through your Hepsia CP including the IP address where the attack came from, what the attacker wanted to do and how ModSecurity addressed the threat. As we take the protection of our clients' sites very seriously, we employ a group of commercial rules that we get from one of the top companies that maintain such rules. Our admins also add custom rules to make certain that your websites will be protected against as many threats as possible.