ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It is used to stop attacks towards script-driven websites through the use of security rules which contain certain expressions. In this way, the firewall can prevent hacking and spamming attempts and preserve even sites which aren't updated frequently. For instance, several unsuccessful login attempts to a script administrative area or attempts to execute a particular file with the purpose to get access to the script shall trigger certain rules, so ModSecurity will block out these activities the instant it identifies them. The firewall is incredibly efficient since it monitors the whole HTTP traffic to a website in real time without slowing it down, so it could stop an attack before any harm is done. It also keeps an exceptionally comprehensive log of all attack attempts that includes more info than standard Apache logs, so you could later analyze the data and take additional measures to increase the security of your websites if required.
ModSecurity in Shared Web Hosting
ModSecurity can be found with every shared web hosting solution which we provide and it is switched on by default for every domain or subdomain that you add through your Hepsia Control Panel. If it interferes with any of your apps or you would like to disable it for some reason, you shall be able to accomplish that through the ModSecurity area of Hepsia with merely a click. You could also enable a passive mode, so the firewall will discover potential attacks and maintain a log, but won't take any action. You can view comprehensive logs in the very same section, including the IP address where the attack originated from, exactly what the attacker attempted to do and at what time, what ModSecurity did, etcetera. For maximum safety of our clients we use a set of commercial firewall rules combined with custom ones that are added by our system administrators.