ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its performance and in case it detects an intrusion attempt, it prevents it. The firewall furthermore keeps a more comprehensive log for the website visitors than any web server does, so you will be able to keep track of what's going on with your websites a lot better than if you rely simply on conventional logs. ModSecurity employs security rules based on which it prevents attacks. For example, it identifies if someone is attempting to log in to the administrator area of a certain script several times or if a request is sent to execute a file with a particular command. In these situations these attempts set off the corresponding rules and the firewall hinders the attempts right away, and then records comprehensive details about them within its logs. ModSecurity is one of the most effective software firewalls on the market and it can protect your web apps against thousands of threats and vulnerabilities, especially if you don’t update them or their plugins regularly.
ModSecurity in Cloud Website Hosting
ModSecurity is available with each cloud website hosting package which we provide and it's activated by default for every domain or subdomain which you include via your Hepsia CP. If it disrupts any of your applications or you'd like to disable it for whatever reason, you'll be able to accomplish that through the ModSecurity section of Hepsia with merely a mouse click. You can also use a passive mode, so the firewall will recognize possible attacks and maintain a log, but shall not take any action. You could see comprehensive logs in the exact same section, including the IP where the attack came from, what precisely the attacker tried to do and at what time, what ModSecurity did, and so on. For max protection of our clients we use a group of commercial firewall rules blended with custom ones that are provided by our system admins.