Learn what ModSecurity is, how it functions and what exactly it does so as to protect your web sites and apps.
ModSecurity is an effective firewall for Apache web servers that is employed to stop attacks toward web apps. It tracks the HTTP traffic to a particular website in real time and blocks any intrusion attempts the instant it detects them. The firewall uses a set of rules to do this - as an illustration, attempting to log in to a script admin area without success several times triggers one rule, sending a request to execute a particular file which may result in getting access to the site triggers a different rule, and so on. ModSecurity is amongst the best firewalls available on the market and it'll secure even scripts which aren't updated often as it can prevent attackers from using known exploits and security holes. Quite detailed info about each intrusion attempt is recorded and the logs the firewall keeps are much more specific than the conventional logs provided by the Apache server, so you can later analyze them and determine if you need to take additional measures so as to increase the security of your script-driven sites.
ModSecurity in Cloud Web Hosting
We provide ModSecurity with all cloud web hosting packages, so your web applications will be resistant to harmful attacks. The firewall is activated by default for all domains and subdomains, but in case you'd like, you will be able to stop it via the respective area of your Hepsia CP. You can also switch on a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs which you shall discover within Hepsia are very detailed and feature info about the nature of any attack, when it occurred and from what IP, the firewall rule which was triggered, and so on. We use a group of commercial rules that are constantly updated, but sometimes our admins include custom rules as well so as to efficiently protect the Internet sites hosted on our machines.