ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It is employed to stop attacks toward script-driven websites by using security rules that contain specific expressions. In this way, the firewall can block hacking and spamming attempts and protect even Internet sites that are not updated frequently. For example, a number of failed login attempts to a script admin area or attempts to execute a certain file with the objective to get access to the script shall trigger particular rules, so ModSecurity will block these activities the moment it detects them. The firewall is extremely efficient as it monitors the entire HTTP traffic to an Internet site in real time without slowing it down, so it can easily prevent an attack before any harm is done. It also maintains an exceptionally comprehensive log of all attack attempts that contains more information than conventional Apache logs, so you can later analyze the data and take extra measures to boost the security of your Internet sites if necessary.

ModSecurity in Web Hosting

We offer ModSecurity with all web hosting solutions, so your web applications will be protected against malicious attacks. The firewall is activated by default for all domains and subdomains, but if you would like, you will be able to stop it through the respective area of your Hepsia Control Panel. You can also switch on a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs which you will find within Hepsia are extremely detailed and offer data about the nature of any attack, when it transpired and from what IP address, the firewall rule which was triggered, etc. We use a range of commercial rules that are frequently updated, but sometimes our administrators add custom rules as well so as to efficiently protect the websites hosted on our servers.