ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its operation and in case it detects an intrusion attempt, it prevents it. The firewall also maintains a more comprehensive log for the site visitors than any server does, so you'll be able to keep track of what's happening with your Internet sites a lot better than if you rely simply on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For example, it recognizes if somebody is attempting to log in to the admin area of a given script multiple times or if a request is sent to execute a file with a certain command. In such cases these attempts trigger the corresponding rules and the firewall program blocks the attempts immediately, and then records detailed info about them in its logs. ModSecurity is amongst the very best software firewalls out there and it can easily protect your web apps against many threats and vulnerabilities, particularly if you don’t update them or their plugins often.
ModSecurity in Shared Website Hosting
We provide ModSecurity with all shared website hosting packages, so your Internet applications will be resistant to malicious attacks. The firewall is activated as standard for all domains and subdomains, but in case you would like, you will be able to stop it through the respective section of your Hepsia CP. You could also switch on a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs that you will find in Hepsia are quite detailed and feature data about the nature of any attack, when it happened and from what IP address, the firewall rule that was triggered, etcetera. We employ a group of commercial rules that are frequently updated, but sometimes our admins add custom rules as well in order to better protect the Internet sites hosted on our servers.