Find out what ModSecurity is, how it works and what exactly it does so as to protect your sites and applications.
ModSecurity is a highly effective firewall for Apache web servers that is employed to stop attacks against web apps. It keeps track of the HTTP traffic to a specific Internet site in real time and blocks any intrusion attempts the instant it detects them. The firewall relies on a set of rules to do this - for instance, trying to log in to a script administrator area without success a few times triggers one rule, sending a request to execute a certain file that may result in getting access to the website triggers another rule, etc. ModSecurity is among the best firewalls available on the market and it'll protect even scripts which are not updated frequently because it can prevent attackers from employing known exploits and security holes. Quite detailed data about every single intrusion attempt is recorded and the logs the firewall keeps are far more comprehensive than the regular logs provided by the Apache server, so you may later examine them and determine whether you need to take more measures so as to enhance the safety of your script-driven websites.
ModSecurity in Cloud Hosting
ModSecurity comes standard with all cloud hosting packages which we provide and it shall be activated automatically for any domain or subdomain you add/create within your Hepsia hosting CP. The firewall has three different modes, so you could activate and deactivate it with only a click or set it to detection mode, so it will maintain a log of all attacks, but it shall not do anything to stop them. The log for each of your Internet sites will include elaborate info which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules that we use are frequently updated and comprise of both commercial ones which we get from a third-party security business and custom ones that our system administrators add in case that they detect a new kind of attacks. That way, the websites that you host here shall be way more secure with no action expected on your end.