ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its operation and when it detects an intrusion attempt, it blocks it. The firewall additionally keeps a more comprehensive log for the traffic than any server does, so you will be able to monitor what's going on with your Internet sites a lot better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it stops attacks. For instance, it identifies if someone is attempting to log in to the administrator area of a specific script a number of times or if a request is sent to execute a file with a particular command. In these cases these attempts set off the corresponding rules and the firewall software hinders the attempts right away, and then records comprehensive info about them within its logs. ModSecurity is one of the most effective software firewalls available and it can protect your web apps against a large number of threats and vulnerabilities, particularly if you don’t update them or their plugins often.
ModSecurity in Hosting
ModSecurity is available with each and every hosting plan that we provide and it's switched on by default for every domain or subdomain that you include via your Hepsia CP. In case it disrupts any of your applications or you'd like to disable it for some reason, you will be able to do this through the ModSecurity section of Hepsia with simply a click. You may also use a passive mode, so the firewall will identify potential attacks and keep a log, but will not take any action. You'll be able to see comprehensive logs in the exact same section, including the IP where the attack came from, exactly what the attacker tried to do and at what time, what ModSecurity did, and so forth. For optimum safety of our clients we use a group of commercial firewall rules combined with custom ones that are included by our system admins.