Learn what ModSecurity is, how it functions and what exactly it does to protect your web sites and apps.
ModSecurity is an efficient firewall for Apache web servers that is used to prevent attacks against web applications. It tracks the HTTP traffic to a specific Internet site in real time and stops any intrusion attempts as soon as it discovers them. The firewall relies on a set of rules to do this - for instance, attempting to log in to a script administrator area without success several times triggers one rule, sending a request to execute a specific file that could result in accessing the Internet site triggers another rule, etc. ModSecurity is among the best firewalls out there and it will protect even scripts which aren't updated on a regular basis because it can prevent attackers from using known exploits and security holes. Quite comprehensive data about every intrusion attempt is recorded and the logs the firewall keeps are considerably more specific than the standard logs provided by the Apache server, so you may later take a look at them and determine if you need to take more measures so as to enhance the safety of your script-driven Internet sites.
ModSecurity in Website Hosting
ModSecurity is supplied with all website hosting servers, so when you choose to host your Internet sites with our firm, they'll be protected against a wide array of attacks. The firewall is turned on by default for all domains and subdomains, so there will be nothing you will have to do on your end. You'll be able to stop ModSecurity for any website if necessary, or to enable a detection mode, so that all activity will be recorded, but the firewall shall not take any real action. You'll be able to view detailed logs from your Hepsia CP including the IP where the attack came from, what the attacker wanted to do and how ModSecurity addressed the threat. Since we take the safety of our customers' sites very seriously, we use a selection of commercial rules which we take from one of the top companies which maintain this type of rules. Our admins also add custom rules to ensure that your sites shall be shielded from as many threats as possible.