ModSecurity is a plugin for Apache web servers that functions as a web application layer firewall. It's employed to prevent attacks towards script-driven sites through the use of security rules which contain certain expressions. That way, the firewall can prevent hacking and spamming attempts and protect even Internet sites that aren't updated often. For instance, numerous failed login attempts to a script administrative area or attempts to execute a particular file with the purpose to get access to the script shall trigger specific rules, so ModSecurity will stop these activities the second it discovers them. The firewall is incredibly efficient because it tracks the whole HTTP traffic to a site in real time without slowing it down, so it can easily stop an attack before any damage is done. It furthermore maintains a very detailed log of all attack attempts that features more information than typical Apache logs, so you can later examine the data and take further measures to improve the security of your Internet sites if needed.
ModSecurity in Shared Hosting
ModSecurity is available on all shared hosting machines, so when you choose to host your Internet sites with our company, they shall be resistant to a wide array of attacks. The firewall is turned on by default for all domains and subdomains, so there will be nothing you'll have to do on your end. You will be able to stop ModSecurity for any website if required, or to switch on a detection mode, so all activity shall be recorded, but the firewall will not take any real action. You shall be able to view comprehensive logs via your Hepsia Control Panel including the IP where the attack originated from, what the attacker wished to do and how ModSecurity addressed the threat. As we take the security of our customers' sites seriously, we use a group of commercial rules which we take from one of the best companies which maintain such rules. Our admins also include custom rules to make sure that your websites shall be resistant to as many risks as possible.