Find out what ModSecurity actually is, how it works and what actually it will do to guard your sites and apps.
ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It is employed to stop attacks against script-driven sites through the use of security rules which contain specific expressions. In this way, the firewall can stop hacking and spamming attempts and shield even websites that are not updated regularly. For example, several unsuccessful login attempts to a script administrator area or attempts to execute a certain file with the intention to get access to the script shall trigger certain rules, so ModSecurity will stop these activities the minute it identifies them. The firewall is extremely efficient since it screens the entire HTTP traffic to an Internet site in real time without slowing it down, so it can easily prevent an attack before any damage is done. It additionally keeps an incredibly comprehensive log of all attack attempts which contains more information than standard Apache logs, so you can later check out the data and take further measures to boost the security of your websites if necessary.
ModSecurity in Shared Web Hosting
We provide ModSecurity with all shared web hosting packages, so your web applications will be protected against malicious attacks. The firewall is activated by default for all domains and subdomains, but if you would like, you will be able to stop it using the respective area of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs which you shall find within Hepsia are very detailed and offer data about the nature of any attack, when it took place and from what IP address, the firewall rule which was triggered, etc. We use a set of commercial rules that are constantly updated, but sometimes our administrators include custom rules as well in order to better protect the websites hosted on our machines.