ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its operation and when it discovers an intrusion attempt, it blocks it. The firewall furthermore maintains a more comprehensive log for the traffic than any web server does, so you shall be able to keep track of what is going on with your sites better than if you rely merely on conventional logs. ModSecurity works with security rules based on which it helps prevent attacks. For instance, it recognizes whether somebody is attempting to log in to the admin area of a given script several times or if a request is sent to execute a file with a particular command. In these cases these attempts trigger the corresponding rules and the firewall software hinders the attempts in real time, after that records in-depth information about them within its logs. ModSecurity is amongst the most effective software firewalls available and it can protect your web applications against thousands of threats and vulnerabilities, particularly if you don’t update them or their plugins frequently.
ModSecurity in Cloud Hosting
ModSecurity is available with every single cloud hosting solution which we provide and it is turned on by default for any domain or subdomain which you include via your Hepsia Control Panel. In case it interferes with any of your applications or you would like to disable it for some reason, you will be able to accomplish that through the ModSecurity area of Hepsia with only a click. You could also enable a passive mode, so the firewall will discover potential attacks and maintain a log, but will not take any action. You can view comprehensive logs in the very same section, including the IP address where the attack came from, exactly what the attacker attempted to do and at what time, what ModSecurity did, etcetera. For max protection of our clients we use a group of commercial firewall rules mixed with custom ones that are included by our system administrators.