ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It's employed to prevent attacks towards script-driven websites through the use of security rules that contain specific expressions. In this way, the firewall can stop hacking and spamming attempts and preserve even sites which aren't updated on a regular basis. For instance, multiple unsuccessful login attempts to a script administrator area or attempts to execute a specific file with the purpose to get access to the script shall trigger particular rules, so ModSecurity shall stop these activities the minute it detects them. The firewall is incredibly efficient since it tracks the entire HTTP traffic to a site in real time without slowing it down, so it can easily stop an attack before any damage is done. It also keeps a very comprehensive log of all attack attempts which contains more information than typical Apache logs, so you can later check out the data and take extra measures to increase the security of your Internet sites if required.
ModSecurity in Hosting
ModSecurity is provided with all hosting web servers, so if you opt to host your Internet sites with our firm, they will be protected against a wide range of attacks. The firewall is enabled as standard for all domains and subdomains, so there will be nothing you shall have to do on your end. You will be able to stop ModSecurity for any website if needed, or to enable a detection mode, so all activity will be recorded, but the firewall shall not take any real action. You will be able to view comprehensive logs through your Hepsia CP including the IP address where the attack originated from, what the attacker wished to do and how ModSecurity handled the threat. As we take the security of our clients' Internet sites very seriously, we use a selection of commercial rules which we take from one of the top firms that maintain this kind of rules. Our admins also include custom rules to make sure that your websites will be shielded from as many threats as possible.