ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its performance and when it identifies an intrusion attempt, it prevents it. The firewall furthermore keeps a more comprehensive log for the website visitors than any server does, so you will be able to keep an eye on what is happening with your websites much better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it prevents attacks. For instance, it identifies whether somebody is trying to log in to the administrator area of a specific script a number of times or if a request is sent to execute a file with a certain command. In these cases these attempts trigger the corresponding rules and the firewall blocks the attempts instantly, then records detailed info about them inside its logs. ModSecurity is one of the most effective software firewalls available and it can easily protect your web applications against a huge number of threats and vulnerabilities, particularly if you don’t update them or their plugins frequently.
ModSecurity in Cloud Web Hosting
ModSecurity is available on all cloud web hosting servers, so if you choose to host your sites with our business, they will be resistant to a wide array of attacks. The firewall is enabled by default for all domains and subdomains, so there'll be nothing you'll have to do on your end. You will be able to stop ModSecurity for any site if needed, or to activate a detection mode, so that all activity shall be recorded, but the firewall shall not take any real action. You'll be able to view specific logs through your Hepsia Control Panel including the IP address where the attack originated from, what the attacker wanted to do and how ModSecurity handled the threat. As we take the protection of our clients' websites seriously, we use a set of commercial rules that we get from one of the leading firms that maintain this type of rules. Our admins also add custom rules to make sure that your Internet sites shall be protected against as many threats as possible.