ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It is employed to prevent attacks toward script-driven websites through the use of security rules which contain particular expressions. This way, the firewall can prevent hacking and spamming attempts and protect even sites that are not updated often. As an example, several failed login attempts to a script admin area or attempts to execute a particular file with the objective to get access to the script will trigger specific rules, so ModSecurity will block these activities the instant it detects them. The firewall is incredibly efficient since it screens the whole HTTP traffic to an Internet site in real time without slowing it down, so it can stop an attack before any harm is done. It additionally keeps an incredibly detailed log of all attack attempts which includes more info than conventional Apache logs, so you could later examine the data and take additional measures to enhance the security of your Internet sites if required.
ModSecurity in Shared Hosting
We provide ModSecurity with all shared hosting solutions, so your Internet applications will be resistant to destructive attacks. The firewall is turned on as standard for all domains and subdomains, but if you'd like, you will be able to stop it via the respective section of your Hepsia Control Panel. You can also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you will discover in Hepsia are quite detailed and include data about the nature of any attack, when it occurred and from what IP, the firewall rule which was triggered, and so on. We use a range of commercial rules which are regularly updated, but sometimes our administrators add custom rules as well in order to better protect the sites hosted on our servers.