ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It's employed to stop attacks toward script-driven Internet sites by employing security rules which contain certain expressions. This way, the firewall can block hacking and spamming attempts and protect even websites that aren't updated on a regular basis. For instance, several failed login attempts to a script administrative area or attempts to execute a specific file with the purpose to get access to the script shall trigger certain rules, so ModSecurity shall stop these activities the minute it identifies them. The firewall is quite efficient because it screens the whole HTTP traffic to an Internet site in real time without slowing it down, so it can easily prevent an attack before any damage is done. It also keeps a very detailed log of all attack attempts which contains more info than standard Apache logs, so you could later examine the data and take extra measures to boost the security of your websites if required.
ModSecurity in Cloud Hosting
ModSecurity is available on all cloud hosting servers, so when you choose to host your websites with our organization, they will be shielded from an array of attacks. The firewall is enabled as standard for all domains and subdomains, so there'll be nothing you shall need to do on your end. You will be able to stop ModSecurity for any website if required, or to switch on a detection mode, so that all activity will be recorded, but the firewall will not take any real action. You'll be able to view specific logs using your Hepsia Control Panel including the IP where the attack came from, what the attacker planned to do and how ModSecurity addressed the threat. As we take the security of our customers' Internet sites very seriously, we use a set of commercial rules which we take from one of the top companies that maintain this type of rules. Our administrators also add custom rules to make certain that your sites will be shielded from as many threats as possible.