ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It is employed to stop attacks toward script-driven Internet sites through the use of security rules which contain certain expressions. In this way, the firewall can block hacking and spamming attempts and protect even sites which aren't updated on a regular basis. For example, numerous unsuccessful login attempts to a script administrator area or attempts to execute a particular file with the purpose to get access to the script will trigger specific rules, so ModSecurity will stop these activities the moment it identifies them. The firewall is very efficient since it tracks the entire HTTP traffic to a site in real time without slowing it down, so it can stop an attack before any harm is done. It also keeps an exceptionally detailed log of all attack attempts that includes more information than traditional Apache logs, so you can later examine the data and take extra measures to enhance the security of your websites if required.
ModSecurity in Shared Hosting
We offer ModSecurity with all shared hosting solutions, so your Internet applications will be resistant to malicious attacks. The firewall is switched on by default for all domains and subdomains, but if you would like, you shall be able to stop it using the respective part of your Hepsia Control Panel. You'll be able to also activate a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs that you shall discover within Hepsia are incredibly detailed and offer data about the nature of any attack, when it took place and from what IP address, the firewall rule which was triggered, and so on. We employ a group of commercial rules which are frequently updated, but sometimes our administrators add custom rules as well in order to better protect the websites hosted on our servers.