ModSecurity

Find out what ModSecurity is, how it functions and just what it does in order to protect your websites and applications.

ModSecurity is a highly effective web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its functionality and if it identifies an intrusion attempt, it blocks it. The firewall furthermore maintains a more thorough log for the traffic than any web server does, so you'll be able to keep an eye on what's happening with your Internet sites a lot better than if you rely merely on standard logs. ModSecurity employs security rules based on which it helps prevent attacks. For example, it recognizes whether anyone is trying to log in to the admin area of a specific script a number of times or if a request is sent to execute a file with a specific command. In such cases these attempts set off the corresponding rules and the firewall software hinders the attempts in real time, then records in-depth information about them inside its logs. ModSecurity is one of the most effective software firewalls available and it can protect your web apps against many threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.

: ModSecurity in Cloud Hosting

ModSecurity comes by default with all cloud hosting packages that we offer and it'll be activated automatically for any domain or subdomain that you add/create inside your Hepsia hosting Control Panel. The firewall has three different modes, so you could activate and deactivate it with simply a mouse click or set it to detection mode, so it'll maintain a log of all attacks, but it will not do anything to prevent them. The log for any of your sites shall include elaborate info which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules we use are frequently updated and consist of both commercial ones we get from a third-party security firm and custom ones which our system administrators add in the event that they detect a new kind of attacks. This way, the sites that you host here shall be a lot more protected without any action needed on your end.