ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It is used to stop attacks against script-driven Internet sites by using security rules that contain certain expressions. This way, the firewall can prevent hacking and spamming attempts and shield even sites which aren't updated regularly. As an example, multiple unsuccessful login attempts to a script administrative area or attempts to execute a certain file with the purpose to get access to the script will trigger specific rules, so ModSecurity will block these activities the instant it identifies them. The firewall is quite efficient since it screens the entire HTTP traffic to a site in real time without slowing it down, so it can easily stop an attack before any harm is done. It furthermore keeps an exceptionally thorough log of all attack attempts which contains more information than traditional Apache logs, so you could later examine the data and take further measures to boost the security of your sites if required.
ModSecurity in Website Hosting
ModSecurity is available with every website hosting plan which we provide and it's switched on by default for every domain or subdomain which you add via your Hepsia Control Panel. In case it disrupts any of your apps or you'd like to disable it for any reason, you will be able to do that through the ModSecurity section of Hepsia with just a mouse click. You could also activate a passive mode, so the firewall will identify possible attacks and maintain a log, but won't take any action. You could see comprehensive logs in the same section, including the IP address where the attack originated from, what precisely the attacker tried to do and at what time, what ModSecurity did, and so forth. For maximum protection of our customers we use a group of commercial firewall rules combined with custom ones which are added by our system admins.