ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its overall performance and in case it detects an intrusion attempt, it prevents it. The firewall furthermore maintains a more detailed log for the traffic than any web server does, so you will be able to keep track of what is going on with your websites a lot better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it helps prevent attacks. For instance, it detects whether anyone is attempting to log in to the administration area of a given script several times or if a request is sent to execute a file with a certain command. In such situations these attempts trigger the corresponding rules and the firewall hinders the attempts instantly, after that records comprehensive info about them in its logs. ModSecurity is amongst the very best software firewalls out there and it can easily protect your web applications against a large number of threats and vulnerabilities, particularly in case you don’t update them or their plugins often.
ModSecurity in Cloud Website Hosting
We offer ModSecurity with all cloud website hosting packages, so your web apps shall be resistant to destructive attacks. The firewall is switched on by default for all domains and subdomains, but in case you'd like, you shall be able to stop it through the respective area of your Hepsia Control Panel. You can also switch on a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you shall discover within Hepsia are very detailed and offer information about the nature of any attack, when it transpired and from what IP address, the firewall rule which was triggered, etcetera. We employ a group of commercial rules which are constantly updated, but sometimes our admins include custom rules as well so as to better protect the Internet sites hosted on our machines.