ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It's employed to stop attacks against script-driven Internet sites by using security rules which contain particular expressions. In this way, the firewall can stop hacking and spamming attempts and protect even Internet sites which aren't updated on a regular basis. For instance, a number of failed login attempts to a script administrative area or attempts to execute a specific file with the intention to get access to the script shall trigger specific rules, so ModSecurity shall block out these activities the instant it identifies them. The firewall is extremely efficient as it monitors the whole HTTP traffic to a website in real time without slowing it down, so it will be able to prevent an attack before any damage is done. It furthermore maintains an incredibly thorough log of all attack attempts which contains more information than typical Apache logs, so you can later examine the data and take additional measures to boost the security of your websites if necessary.

ModSecurity in Cloud Web Hosting

ModSecurity is available with every cloud web hosting plan that we provide and it's switched on by default for every domain or subdomain that you add through your Hepsia CP. In the event that it disrupts any of your apps or you'd like to disable it for some reason, you'll be able to do that through the ModSecurity section of Hepsia with merely a mouse click. You can also enable a passive mode, so the firewall will detect possible attacks and keep a log, but shall not take any action. You'll be able to see detailed logs in the very same section, including the IP address where the attack came from, what exactly the attacker tried to do and at what time, what ModSecurity did, etcetera. For max protection of our clients we use a collection of commercial firewall rules combined with custom ones which are added by our system administrators.