ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It's used to prevent attacks towards script-driven websites by employing security rules which contain specific expressions. In this way, the firewall can block hacking and spamming attempts and shield even websites which aren't updated regularly. For example, several failed login attempts to a script administrative area or attempts to execute a certain file with the purpose to get access to the script shall trigger specific rules, so ModSecurity shall block these activities the instant it discovers them. The firewall is quite efficient because it screens the entire HTTP traffic to an Internet site in real time without slowing it down, so it can easily stop an attack before any harm is done. It also keeps a very detailed log of all attack attempts which contains more information than typical Apache logs, so you can later check out the data and take additional measures to increase the security of your sites if required.
ModSecurity in Shared Hosting
We offer ModSecurity with all shared hosting solutions, so your web apps shall be shielded from harmful attacks. The firewall is switched on by default for all domains and subdomains, but if you'd like, you'll be able to stop it via the respective area of your Hepsia Control Panel. You could also switch on a detection mode, so ModSecurity shall keep a log as intended, but won't take any action. The logs which you will discover within Hepsia are extremely detailed and offer info about the nature of any attack, when it transpired and from what IP, the firewall rule that was triggered, etcetera. We use a group of commercial rules which are regularly updated, but sometimes our admins add custom rules as well in order to better protect the Internet sites hosted on our machines.