ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It's used to prevent attacks towards script-driven sites by using security rules which contain specific expressions. That way, the firewall can stop hacking and spamming attempts and protect even Internet sites which aren't updated regularly. For instance, a number of failed login attempts to a script administrative area or attempts to execute a certain file with the purpose to get access to the script will trigger certain rules, so ModSecurity will block these activities the second it detects them. The firewall is quite efficient because it monitors the entire HTTP traffic to a website in real time without slowing it down, so it can stop an attack before any damage is done. It also keeps an incredibly detailed log of all attack attempts which includes more information than standard Apache logs, so you can later examine the data and take extra measures to increase the security of your websites if required.
ModSecurity in Website Hosting
ModSecurity is supplied with all website hosting web servers, so when you opt to host your sites with our organization, they shall be shielded from an array of attacks. The firewall is turned on by default for all domains and subdomains, so there'll be nothing you shall have to do on your end. You shall be able to stop ModSecurity for any site if necessary, or to enable a detection mode, so that all activity will be recorded, but the firewall shall not take any real action. You'll be able to view comprehensive logs using your Hepsia CP including the IP address where the attack originated from, what the attacker wanted to do and how ModSecurity addressed the threat. Since we take the safety of our clients' Internet sites seriously, we use a set of commercial rules which we take from one of the leading firms that maintain this sort of rules. Our admins also include custom rules to make sure that your websites will be protected against as many risks as possible.