Find out what ModSecurity is, how it works and precisely what it does in order to protect your websites and applications.
ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its functionality and in case it detects an intrusion attempt, it prevents it. The firewall furthermore keeps a more comprehensive log for the website visitors than any server does, so you will manage to keep an eye on what's going on with your sites better than if you rely only on conventional logs. ModSecurity employs security rules based on which it helps prevent attacks. For instance, it identifies whether anyone is attempting to log in to the admin area of a certain script multiple times or if a request is sent to execute a file with a specific command. In these situations these attempts trigger the corresponding rules and the software blocks the attempts instantly, after that records detailed details about them inside its logs. ModSecurity is one of the best software firewalls on the market and it can easily protect your web applications against thousands of threats and vulnerabilities, particularly if you don’t update them or their plugins frequently.
ModSecurity in Hosting
We provide ModSecurity with all hosting solutions, so your Internet applications will be shielded from malicious attacks. The firewall is activated by default for all domains and subdomains, but in case you'd like, you shall be able to stop it via the respective area of your Hepsia CP. You can also switch on a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you will find in Hepsia are quite detailed and include data about the nature of any attack, when it took place and from what IP, the firewall rule which was triggered, etc. We use a range of commercial rules that are regularly updated, but sometimes our admins add custom rules as well so as to better protect the Internet sites hosted on our machines.