ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It's employed to stop attacks against script-driven Internet sites by employing security rules which contain particular expressions. This way, the firewall can prevent hacking and spamming attempts and shield even websites that aren't updated on a regular basis. For example, multiple failed login attempts to a script administrative area or attempts to execute a particular file with the intention to get access to the script will trigger certain rules, so ModSecurity will block these activities the second it identifies them. The firewall is quite efficient since it screens the whole HTTP traffic to an Internet site in real time without slowing it down, so it could stop an attack before any damage is done. It furthermore maintains an exceptionally comprehensive log of all attack attempts which contains more info than conventional Apache logs, so you can later examine the data and take additional measures to improve the security of your Internet sites if required.

ModSecurity in Web Hosting

ModSecurity is available on all web hosting machines, so when you choose to host your sites with our company, they shall be protected against a wide range of attacks. The firewall is turned on by default for all domains and subdomains, so there shall be nothing you will need to do on your end. You shall be able to stop ModSecurity for any site if required, or to enable a detection mode, so all activity will be recorded, but the firewall will not take any real action. You will be able to view detailed logs using your Hepsia Control Panel including the IP where the attack originated from, what the attacker wished to do and how ModSecurity handled the threat. Since we take the protection of our customers' websites seriously, we employ a collection of commercial rules which we get from one of the leading companies that maintain such rules. Our administrators also add custom rules to make sure that your Internet sites will be shielded from as many threats as possible.