Discover what ModSecurity is, how it works and precisely what it does in order to protect your websites and applications.
ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its operation and in case it identifies an intrusion attempt, it prevents it. The firewall additionally maintains a more thorough log for the site visitors than any web server does, so you'll manage to monitor what's happening with your websites much better than if you rely merely on conventional logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it recognizes whether someone is attempting to log in to the administration area of a given script several times or if a request is sent to execute a file with a certain command. In such circumstances these attempts set off the corresponding rules and the software hinders the attempts right away, then records detailed info about them within its logs. ModSecurity is among the very best software firewalls on the market and it can easily protect your web applications against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins often.
ModSecurity in Website Hosting
ModSecurity can be found with each and every website hosting solution that we provide and it's switched on by default for every domain or subdomain that you include via your Hepsia CP. If it disrupts any of your apps or you'd like to disable it for some reason, you'll be able to do this through the ModSecurity section of Hepsia with just a click. You may also activate a passive mode, so the firewall will recognize possible attacks and maintain a log, but won't take any action. You'll be able to view detailed logs in the very same section, including the IP where the attack originated from, what exactly the attacker tried to do and at what time, what ModSecurity did, etcetera. For optimum protection of our clients we use a group of commercial firewall rules combined with custom ones which are added by our system admins.