ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It's employed to prevent attacks against script-driven sites by employing security rules which contain certain expressions. In this way, the firewall can block hacking and spamming attempts and shield even websites which are not updated frequently. For example, numerous failed login attempts to a script admin area or attempts to execute a specific file with the purpose to get access to the script will trigger particular rules, so ModSecurity will block out these activities the minute it identifies them. The firewall is incredibly efficient as it monitors the whole HTTP traffic to a site in real time without slowing it down, so it could stop an attack before any damage is done. It additionally maintains an exceptionally comprehensive log of all attack attempts which features more info than traditional Apache logs, so you can later check out the data and take further measures to improve the security of your websites if needed.
ModSecurity in Cloud Hosting
ModSecurity is available on all cloud hosting machines, so if you choose to host your Internet sites with our organization, they will be shielded from an array of attacks. The firewall is enabled by default for all domains and subdomains, so there shall be nothing you will have to do on your end. You'll be able to stop ModSecurity for any website if necessary, or to switch on a detection mode, so all activity will be recorded, but the firewall will not take any real action. You shall be able to view comprehensive logs using your Hepsia Control Panel including the IP address where the attack came from, what the attacker planned to do and how ModSecurity dealt with the threat. As we take the security of our clients' sites very seriously, we employ a set of commercial rules which we take from one of the best companies which maintain this kind of rules. Our admins also include custom rules to make sure that your sites will be resistant to as many risks as possible.