Find out what ModSecurity is, the way it works and what actually it can do to protect your websites and web applications.
ModSecurity is a highly effective firewall for Apache web servers that is used to stop attacks towards web apps. It monitors the HTTP traffic to a certain website in real time and stops any intrusion attempts the moment it discovers them. The firewall uses a set of rules to accomplish that - as an example, attempting to log in to a script administration area unsuccessfully a few times triggers one rule, sending a request to execute a particular file that could result in gaining access to the Internet site triggers a different rule, and so forth. ModSecurity is among the best firewalls around and it'll secure even scripts which are not updated on a regular basis as it can prevent attackers from using known exploits and security holes. Quite detailed info about each and every intrusion attempt is recorded and the logs the firewall keeps are far more detailed than the conventional logs created by the Apache server, so you could later take a look at them and decide if you need to take additional measures in order to increase the security of your script-driven sites.
ModSecurity in Cloud Hosting
We provide ModSecurity with all cloud hosting packages, so your Internet apps will be protected against destructive attacks. The firewall is turned on by default for all domains and subdomains, but in case you'd like, you'll be able to stop it using the respective section of your Hepsia CP. You'll be able to also activate a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs that you shall discover inside Hepsia are extremely detailed and offer information about the nature of any attack, when it happened and from what IP, the firewall rule that was triggered, and so on. We employ a set of commercial rules which are frequently updated, but sometimes our admins include custom rules as well in order to better protect the Internet sites hosted on our servers.