ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It is employed to prevent attacks towards script-driven websites by employing security rules that contain specific expressions. In this way, the firewall can stop hacking and spamming attempts and protect even websites which aren't updated on a regular basis. For instance, multiple failed login attempts to a script administrator area or attempts to execute a specific file with the purpose to get access to the script shall trigger particular rules, so ModSecurity will stop these activities the instant it identifies them. The firewall is very efficient as it screens the whole HTTP traffic to a site in real time without slowing it down, so it will be able to prevent an attack before any damage is done. It additionally keeps an incredibly comprehensive log of all attack attempts that features more information than conventional Apache logs, so you could later examine the data and take further measures to boost the security of your sites if needed.
ModSecurity in Cloud Website Hosting
ModSecurity is available on all cloud website hosting servers, so if you opt to host your Internet sites with our company, they shall be protected against a wide range of attacks. The firewall is turned on as standard for all domains and subdomains, so there shall be nothing you will need to do on your end. You'll be able to stop ModSecurity for any Internet site if necessary, or to enable a detection mode, so all activity will be recorded, but the firewall will not take any real action. You'll be able to view comprehensive logs from your Hepsia CP including the IP where the attack came from, what the attacker wished to do and how ModSecurity dealt with the threat. As we take the security of our clients' websites seriously, we use a collection of commercial rules that we take from one of the leading firms that maintain this type of rules. Our admins also include custom rules to ensure that your websites shall be resistant to as many threats as possible.