ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its overall performance and in case it identifies an intrusion attempt, it blocks it. The firewall also maintains a more thorough log for the traffic than any server does, so you will be able to keep an eye on what is going on with your Internet sites better than if you rely merely on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it recognizes if someone is trying to log in to the administrator area of a specific script a number of times or if a request is sent to execute a file with a certain command. In these circumstances these attempts set off the corresponding rules and the firewall program hinders the attempts right away, after that records in-depth details about them in its logs. ModSecurity is one of the most effective software firewalls out there and it can easily protect your web apps against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins often.
ModSecurity in Hosting
ModSecurity is available with every hosting plan which we provide and it's turned on by default for every domain or subdomain which you include through your Hepsia CP. In the event that it interferes with any of your applications or you'd like to disable it for whatever reason, you'll be able to do this through the ModSecurity section of Hepsia with only a click. You may also enable a passive mode, so the firewall will recognize possible attacks and keep a log, but shall not take any action. You can see extensive logs in the exact same section, including the IP address where the attack came from, what precisely the attacker attempted to do and at what time, what ModSecurity did, etc. For maximum safety of our customers we use a set of commercial firewall rules combined with custom ones which are provided by our system administrators.