ModSecurity
Learn what ModSecurity is in fact, how it operates and what actually it can do to protect your websites and web apps.
ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It's used to stop attacks towards script-driven websites by using security rules that contain certain expressions. That way, the firewall can block hacking and spamming attempts and shield even Internet sites which are not updated on a regular basis. As an example, a number of failed login attempts to a script administrative area or attempts to execute a certain file with the intention to get access to the script shall trigger specific rules, so ModSecurity will block these activities the moment it discovers them. The firewall is extremely efficient because it monitors the entire HTTP traffic to a website in real time without slowing it down, so it will be able to stop an attack before any harm is done. It also keeps an incredibly comprehensive log of all attack attempts which contains more information than traditional Apache logs, so you can later check out the data and take further measures to increase the security of your websites if required.
-
ModSecurity in Web Hosting
ModSecurity is provided with all
web hosting machines, so if you choose to host your sites with our firm, they shall be resistant to a wide range of attacks. The firewall is turned on as standard for all domains and subdomains, so there'll be nothing you will have to do on your end. You shall be able to stop ModSecurity for any Internet site if necessary, or to activate a detection mode, so that all activity shall be recorded, but the firewall won't take any real action. You'll be able to view specific logs via your Hepsia CP including the IP address where the attack came from, what the attacker planned to do and how ModSecurity addressed the threat. Since we take the security of our customers' sites seriously, we employ a collection of commercial rules that we take from one of the best firms that maintain this sort of rules. Our administrators also add custom rules to make certain that your websites will be shielded from as many threats as possible.