ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its operation and if it identifies an intrusion attempt, it prevents it. The firewall additionally keeps a more thorough log for the traffic than any web server does, so you will be able to keep an eye on what's happening with your websites much better than if you rely simply on conventional logs. ModSecurity employs security rules based on which it prevents attacks. For example, it identifies if someone is trying to log in to the admin area of a specific script a number of times or if a request is sent to execute a file with a particular command. In such circumstances these attempts trigger the corresponding rules and the software blocks the attempts immediately, after that records comprehensive details about them inside its logs. ModSecurity is among the best software firewalls on the market and it can protect your web applications against a large number of threats and vulnerabilities, particularly if you don’t update them or their plugins frequently.
ModSecurity in Shared Hosting
ModSecurity is available with each and every shared hosting package that we offer and it is activated by default for every domain or subdomain which you add via your Hepsia CP. If it disrupts any of your programs or you would like to disable it for any reason, you will be able to do that through the ModSecurity section of Hepsia with simply a mouse click. You may also enable a passive mode, so the firewall will detect possible attacks and maintain a log, but won't take any action. You can see comprehensive logs in the exact same section, including the IP where the attack originated from, exactly what the attacker attempted to do and at what time, what ModSecurity did, and so forth. For optimum protection of our customers we use a group of commercial firewall rules mixed with custom ones that are included by our system admins.