ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It's used to prevent attacks towards script-driven Internet sites through the use of security rules which contain particular expressions. In this way, the firewall can block hacking and spamming attempts and preserve even Internet sites that are not updated on a regular basis. For example, a number of unsuccessful login attempts to a script administrator area or attempts to execute a specific file with the intention to get access to the script will trigger specific rules, so ModSecurity will block out these activities the instant it discovers them. The firewall is extremely efficient as it screens the whole HTTP traffic to a site in real time without slowing it down, so it could prevent an attack before any harm is done. It additionally maintains an incredibly detailed log of all attack attempts which features more information than traditional Apache logs, so you could later check out the data and take further measures to improve the security of your Internet sites if necessary.
ModSecurity in Shared Web Hosting
ModSecurity is available with each shared web hosting package which we provide and it's activated by default for any domain or subdomain that you add through your Hepsia Control Panel. In case it disrupts any of your apps or you would like to disable it for whatever reason, you shall be able to do this through the ModSecurity area of Hepsia with only a mouse click. You may also activate a passive mode, so the firewall will recognize potential attacks and keep a log, but won't take any action. You can see extensive logs in the same section, including the IP where the attack originated from, what exactly the attacker aimed to do and at what time, what ModSecurity did, etc. For optimum protection of our customers we use a group of commercial firewall rules combined with custom ones which are added by our system administrators.