ModSecurity is a plugin for Apache web servers that functions as a web app layer firewall. It's employed to stop attacks toward script-driven Internet sites by employing security rules that contain specific expressions. In this way, the firewall can stop hacking and spamming attempts and preserve even Internet sites that are not updated regularly. For example, a number of unsuccessful login attempts to a script administrative area or attempts to execute a particular file with the objective to get access to the script will trigger certain rules, so ModSecurity will block out these activities the instant it identifies them. The firewall is extremely efficient since it tracks the entire HTTP traffic to a site in real time without slowing it down, so it can easily prevent an attack before any harm is done. It furthermore keeps a very detailed log of all attack attempts that includes more information than traditional Apache logs, so you could later analyze the data and take extra measures to boost the security of your sites if needed.
ModSecurity in Shared Hosting
ModSecurity is provided with all shared hosting web servers, so when you choose to host your websites with our organization, they'll be protected against an array of attacks. The firewall is turned on by default for all domains and subdomains, so there'll be nothing you'll need to do on your end. You shall be able to stop ModSecurity for any site if needed, or to switch on a detection mode, so that all activity will be recorded, but the firewall shall not take any real action. You shall be able to view specific logs through your Hepsia CP including the IP address where the attack originated from, what the attacker planned to do and how ModSecurity dealt with the threat. As we take the security of our clients' sites seriously, we employ a group of commercial rules which we take from one of the leading companies that maintain such rules. Our admins also include custom rules to ensure that your Internet sites will be resistant to as many threats as possible.