ModSecurity
Find out what ModSecurity is, how it functions and what exactly it does to protect your web sites and applications.
ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to a site without affecting its operation and in case it identifies an intrusion attempt, it prevents it. The firewall additionally keeps a more detailed log for the site visitors than any web server does, so you will be able to keep an eye on what is going on with your Internet sites much better than if you rely merely on standard logs. ModSecurity employs security rules based on which it stops attacks. For example, it recognizes if someone is attempting to log in to the administration area of a particular script a number of times or if a request is sent to execute a file with a specific command. In such situations these attempts trigger the corresponding rules and the software hinders the attempts instantly, after that records in-depth details about them inside its logs. ModSecurity is amongst the best software firewalls on the market and it can easily protect your web apps against a huge number of threats and vulnerabilities, particularly in case you don’t update them or their plugins frequently.
ModSecurity in Website Hosting
ModSecurity comes standard with all website hosting packages which we offer and it will be turned on automatically for any domain or subdomain that you add/create within your Hepsia hosting Control Panel. The firewall has three different modes, so you could activate and disable it with simply a click or set it to detection mode, so it will keep a log of all attacks, but it shall not do anything to prevent them. The log for any of your websites shall feature comprehensive info such as the nature of the attack, where it came from, what action was taken by ModSecurity, and so on. The firewall rules we use are frequently updated and include both commercial ones that we get from a third-party security company and custom ones which our system administrators add in case that they detect a new sort of attacks. In this way, the websites you host here shall be far more protected without any action required on your end.