ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its functionality and when it identifies an intrusion attempt, it blocks it. The firewall additionally maintains a more comprehensive log for the traffic than any web server does, so you'll manage to keep track of what is going on with your websites better than if you rely only on conventional logs. ModSecurity works with security rules based on which it stops attacks. For instance, it recognizes whether someone is attempting to log in to the administrator area of a particular script a number of times or if a request is sent to execute a file with a certain command. In such instances these attempts trigger the corresponding rules and the firewall software blocks the attempts in real time, and then records detailed info about them within its logs. ModSecurity is amongst the very best software firewalls out there and it could easily protect your web apps against a huge number of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.
ModSecurity in Hosting
We offer ModSecurity with all hosting plans, so your web apps shall be protected against malicious attacks. The firewall is switched on by default for all domains and subdomains, but in case you would like, you'll be able to stop it using the respective part of your Hepsia CP. You'll be able to also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you shall discover inside Hepsia are incredibly detailed and feature info about the nature of any attack, when it took place and from what IP, the firewall rule that was triggered, and so forth. We employ a group of commercial rules which are constantly updated, but sometimes our administrators add custom rules as well so as to efficiently protect the sites hosted on our machines.