Learn what ModSecurity actually is, how it works and just what it does to protect your websites and applications.
ModSecurity is an efficient firewall for Apache web servers which is employed to stop attacks towards web apps. It monitors the HTTP traffic to a certain Internet site in real time and prevents any intrusion attempts as soon as it identifies them. The firewall uses a set of rules to do this - for example, attempting to log in to a script admin area without success many times triggers one rule, sending a request to execute a particular file which may result in gaining access to the website triggers another rule, and so forth. ModSecurity is among the best firewalls out there and it'll preserve even scripts that are not updated regularly since it can prevent attackers from employing known exploits and security holes. Quite detailed data about each and every intrusion attempt is recorded and the logs the firewall maintains are considerably more detailed than the conventional logs created by the Apache server, so you could later take a look at them and decide whether you need to take more measures in order to boost the protection of your script-driven Internet sites.
ModSecurity in Cloud Hosting
ModSecurity comes standard with all cloud hosting solutions which we supply and it will be turned on automatically for any domain or subdomain which you add/create within your Hepsia hosting Control Panel. The firewall has three different modes, so you could switch on and deactivate it with only a click or set it to detection mode, so it shall maintain a log of all attacks, but it shall not do anything to stop them. The log for each of your sites shall feature elaborate information such as the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules that we use are constantly updated and consist of both commercial ones which we get from a third-party security firm and custom ones that our system administrators add in the event that they detect a new kind of attacks. This way, the websites which you host here shall be way more protected without any action needed on your end.