ModSecurity is a plugin for Apache web servers which acts as a web app layer firewall. It is used to prevent attacks toward script-driven websites by employing security rules which contain particular expressions. This way, the firewall can prevent hacking and spamming attempts and preserve even websites which are not updated often. For instance, a number of failed login attempts to a script admin area or attempts to execute a specific file with the intention to get access to the script will trigger particular rules, so ModSecurity will block these activities the moment it identifies them. The firewall is extremely efficient since it screens the whole HTTP traffic to a website in real time without slowing it down, so it could prevent an attack before any harm is done. It additionally maintains an exceptionally comprehensive log of all attack attempts that includes more info than standard Apache logs, so you can later analyze the data and take additional measures to increase the security of your websites if needed.
ModSecurity in Shared Web Hosting
ModSecurity comes by default with all shared web hosting solutions that we provide and it'll be switched on automatically for any domain or subdomain that you add/create in your Hepsia hosting CP. The firewall has 3 different modes, so you'll be able to switch on and deactivate it with just a click or set it to detection mode, so it'll keep a log of all attacks, but it will not do anything to prevent them. The log for each of your Internet sites will feature in-depth information such as the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules that we use are constantly updated and incorporate both commercial ones that we get from a third-party security company and custom ones our system administrators include in the event that they detect a new type of attacks. This way, the websites that you host here shall be much more secure without any action expected on your end.