ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its overall performance and in case it detects an intrusion attempt, it prevents it. The firewall furthermore maintains a more thorough log for the website visitors than any web server does, so you will manage to keep an eye on what's going on with your sites a lot better than if you rely only on standard logs. ModSecurity works with security rules based on which it stops attacks. For example, it recognizes if anyone is trying to log in to the administration area of a particular script a number of times or if a request is sent to execute a file with a specific command. In such situations these attempts trigger the corresponding rules and the firewall program hinders the attempts immediately, and then records in-depth info about them within its logs. ModSecurity is one of the most effective software firewalls available and it can protect your web apps against a huge number of threats and vulnerabilities, particularly if you don’t update them or their plugins regularly.
ModSecurity in Hosting
We provide ModSecurity with all hosting plans, so your Internet apps shall be shielded from harmful attacks. The firewall is turned on by default for all domains and subdomains, but if you'd like, you'll be able to stop it using the respective area of your Hepsia Control Panel. You can also switch on a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs that you will find in Hepsia are very detailed and include information about the nature of any attack, when it transpired and from what IP, the firewall rule which was triggered, etcetera. We employ a group of commercial rules which are frequently updated, but sometimes our admins include custom rules as well in order to better protect the websites hosted on our servers.