ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It is employed to prevent attacks towards script-driven websites by employing security rules which contain particular expressions. This way, the firewall can stop hacking and spamming attempts and preserve even websites that are not updated often. For instance, multiple unsuccessful login attempts to a script admin area or attempts to execute a certain file with the purpose to get access to the script shall trigger specific rules, so ModSecurity will block these activities the moment it identifies them. The firewall is incredibly efficient because it tracks the entire HTTP traffic to a website in real time without slowing it down, so it can stop an attack before any harm is done. It additionally keeps an incredibly thorough log of all attack attempts which includes more info than conventional Apache logs, so you could later analyze the data and take further measures to increase the security of your sites if needed.
ModSecurity in Shared Hosting
ModSecurity is supplied with all shared hosting servers, so when you decide to host your sites with our firm, they'll be resistant to a wide range of attacks. The firewall is enabled by default for all domains and subdomains, so there'll be nothing you'll have to do on your end. You will be able to stop ModSecurity for any website if needed, or to activate a detection mode, so that all activity will be recorded, but the firewall will not take any real action. You will be able to view specific logs using your Hepsia CP including the IP where the attack came from, what the attacker wished to do and how ModSecurity dealt with the threat. Since we take the security of our clients' sites seriously, we employ a group of commercial rules which we take from one of the leading companies that maintain this sort of rules. Our administrators also add custom rules to make sure that your Internet sites will be shielded from as many threats as possible.