ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its functionality and if it detects an intrusion attempt, it blocks it. The firewall also keeps a more comprehensive log for the site visitors than any server does, so you will manage to keep track of what's happening with your websites better than if you rely only on standard logs. ModSecurity works with security rules based on which it stops attacks. For example, it identifies if anyone is attempting to log in to the administration area of a given script multiple times or if a request is sent to execute a file with a certain command. In these circumstances these attempts trigger the corresponding rules and the software hinders the attempts right away, and then records detailed info about them inside its logs. ModSecurity is amongst the very best software firewalls out there and it can protect your web apps against many threats and vulnerabilities, especially if you don’t update them or their plugins often.
ModSecurity in Cloud Hosting
ModSecurity can be found with each cloud hosting solution that we offer and it's activated by default for any domain or subdomain that you include through your Hepsia Control Panel. If it disrupts any of your apps or you would like to disable it for any reason, you'll be able to achieve that through the ModSecurity area of Hepsia with merely a click. You can also activate a passive mode, so the firewall will recognize potential attacks and maintain a log, but won't take any action. You'll be able to view extensive logs in the very same section, including the IP address where the attack originated from, exactly what the attacker attempted to do and at what time, what ModSecurity did, etcetera. For maximum security of our clients we use a group of commercial firewall rules blended with custom ones which are added by our system administrators.