ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its performance and when it discovers an intrusion attempt, it prevents it. The firewall additionally keeps a more detailed log for the traffic than any web server does, so you will be able to keep track of what is happening with your websites a lot better than if you rely only on standard logs. ModSecurity employs security rules based on which it helps prevent attacks. For example, it detects if somebody is attempting to log in to the administrator area of a specific script a number of times or if a request is sent to execute a file with a particular command. In such instances these attempts set off the corresponding rules and the firewall blocks the attempts in real time, then records comprehensive info about them inside its logs. ModSecurity is amongst the most effective software firewalls out there and it can easily protect your web apps against a large number of threats and vulnerabilities, particularly if you don’t update them or their plugins often.
ModSecurity in Cloud Web Hosting
ModSecurity is available on all cloud web hosting web servers, so when you decide to host your sites with our business, they'll be resistant to a wide range of attacks. The firewall is turned on by default for all domains and subdomains, so there will be nothing you shall need to do on your end. You shall be able to stop ModSecurity for any website if necessary, or to enable a detection mode, so that all activity will be recorded, but the firewall won't take any real action. You shall be able to view comprehensive logs from your Hepsia Control Panel including the IP where the attack came from, what the attacker wished to do and how ModSecurity dealt with the threat. As we take the protection of our customers' websites very seriously, we use a group of commercial rules which we take from one of the leading companies that maintain such rules. Our admins also include custom rules to make sure that your websites shall be protected against as many risks as possible.