ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It's used to stop attacks against script-driven websites through the use of security rules that contain specific expressions. In this way, the firewall can stop hacking and spamming attempts and protect even websites that aren't updated often. For instance, a number of unsuccessful login attempts to a script administrative area or attempts to execute a particular file with the purpose to get access to the script shall trigger specific rules, so ModSecurity will block out these activities the minute it discovers them. The firewall is extremely efficient because it screens the whole HTTP traffic to an Internet site in real time without slowing it down, so it will be able to stop an attack before any harm is done. It furthermore maintains an exceptionally thorough log of all attack attempts which includes more information than conventional Apache logs, so you can later check out the data and take additional measures to boost the security of your websites if needed.

ModSecurity in Cloud Hosting

ModSecurity comes by default with all cloud hosting solutions which we provide and it will be activated automatically for any domain or subdomain which you add/create within your Hepsia hosting Control Panel. The firewall has three different modes, so you could switch on and disable it with only a mouse click or set it to detection mode, so it will keep a log of all attacks, but it'll not do anything to stop them. The log for each of your sites will contain elaborate info such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules which we use are constantly updated and incorporate both commercial ones which we get from a third-party security company and custom ones that our system administrators add in the event that they detect a new sort of attacks. In this way, the sites you host here will be a lot more secure without any action expected on your end.