ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its functionality and when it detects an intrusion attempt, it prevents it. The firewall furthermore maintains a more thorough log for the website visitors than any web server does, so you'll be able to monitor what's happening with your Internet sites a lot better than if you rely simply on conventional logs. ModSecurity works with security rules based on which it stops attacks. For example, it detects if somebody is attempting to log in to the administrator area of a certain script a number of times or if a request is sent to execute a file with a certain command. In such circumstances these attempts set off the corresponding rules and the firewall program hinders the attempts immediately, after that records detailed info about them in its logs. ModSecurity is one of the very best software firewalls available and it can protect your web applications against many threats and vulnerabilities, especially in case you don’t update them or their plugins often.
ModSecurity in Cloud Web Hosting
ModSecurity is offered with each cloud web hosting plan which we provide and it's activated by default for any domain or subdomain which you add through your Hepsia Control Panel. If it disrupts any of your applications or you'd like to disable it for any reason, you will be able to do this through the ModSecurity section of Hepsia with just a mouse click. You can also enable a passive mode, so the firewall will recognize possible attacks and maintain a log, but won't take any action. You can see extensive logs in the exact same section, including the IP where the attack originated from, exactly what the attacker attempted to do and at what time, what ModSecurity did, etc. For max security of our clients we use a set of commercial firewall rules blended with custom ones which are provided by our system administrators.