ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its functionality and if it discovers an intrusion attempt, it blocks it. The firewall also keeps a more detailed log for the site visitors than any web server does, so you'll be able to keep an eye on what's going on with your websites a lot better than if you rely only on standard logs. ModSecurity employs security rules based on which it helps prevent attacks. For example, it recognizes whether someone is attempting to log in to the administration area of a certain script multiple times or if a request is sent to execute a file with a certain command. In such circumstances these attempts set off the corresponding rules and the firewall program blocks the attempts immediately, then records detailed information about them in its logs. ModSecurity is amongst the best software firewalls available and it could easily protect your web applications against many threats and vulnerabilities, particularly if you don’t update them or their plugins regularly.
ModSecurity in Cloud Hosting
ModSecurity is offered with every single cloud hosting solution which we offer and it's activated by default for every domain or subdomain that you include via your Hepsia CP. In case it disrupts any of your apps or you would like to disable it for any reason, you shall be able to do that through the ModSecurity area of Hepsia with merely a click. You can also use a passive mode, so the firewall will discover potential attacks and keep a log, but will not take any action. You could see comprehensive logs in the very same section, including the IP address where the attack came from, exactly what the attacker attempted to do and at what time, what ModSecurity did, etc. For optimum protection of our clients we use a group of commercial firewall rules mixed with custom ones which are provided by our system admins.