ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its operation and if it detects an intrusion attempt, it blocks it. The firewall also keeps a more detailed log for the website visitors than any server does, so you'll be able to keep track of what's going on with your sites better than if you rely only on standard logs. ModSecurity works with security rules based on which it prevents attacks. For example, it recognizes whether someone is attempting to log in to the administrator area of a specific script several times or if a request is sent to execute a file with a specific command. In such situations these attempts trigger the corresponding rules and the software hinders the attempts instantly, then records detailed details about them inside its logs. ModSecurity is amongst the very best software firewalls out there and it could easily protect your web apps against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.
ModSecurity in Cloud Hosting
ModSecurity is available with each cloud hosting package that we offer and it's turned on by default for every domain or subdomain that you add through your Hepsia CP. In the event that it interferes with any of your apps or you would like to disable it for some reason, you will be able to do that through the ModSecurity section of Hepsia with only a mouse click. You can also use a passive mode, so the firewall will discover possible attacks and maintain a log, but shall not take any action. You'll be able to view detailed logs in the same section, including the IP address where the attack came from, what exactly the attacker tried to do and at what time, what ModSecurity did, etc. For maximum safety of our clients we use a group of commercial firewall rules blended with custom ones that are added by our system administrators.