ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its performance and in case it detects an intrusion attempt, it blocks it. The firewall additionally maintains a more thorough log for the traffic than any server does, so you shall manage to monitor what's happening with your websites a lot better than if you rely simply on standard logs. ModSecurity works with security rules based on which it prevents attacks. For example, it recognizes if somebody is trying to log in to the admin area of a given script multiple times or if a request is sent to execute a file with a particular command. In these cases these attempts trigger the corresponding rules and the firewall software hinders the attempts right away, then records comprehensive details about them inside its logs. ModSecurity is among the best software firewalls out there and it can protect your web apps against thousands of threats and vulnerabilities, particularly in case you don’t update them or their plugins often.
ModSecurity in Cloud Web Hosting
We provide ModSecurity with all cloud web hosting packages, so your web applications shall be protected against destructive attacks. The firewall is activated by default for all domains and subdomains, but in case you would like, you shall be able to stop it through the respective part of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you shall discover within Hepsia are quite detailed and include data about the nature of any attack, when it occurred and from what IP address, the firewall rule that was triggered, etc. We use a group of commercial rules which are frequently updated, but sometimes our administrators include custom rules as well so as to efficiently protect the Internet sites hosted on our machines.