Learn what ModSecurity is, how it works and precisely what it does so as to protect your sites and applications.
ModSecurity is an efficient firewall for Apache web servers that is used to prevent attacks toward web apps. It keeps track of the HTTP traffic to a certain Internet site in real time and blocks any intrusion attempts the instant it identifies them. The firewall relies on a set of rules to do this - as an illustration, trying to log in to a script administration area without success many times activates one rule, sending a request to execute a certain file that could result in accessing the site triggers a different rule, etc. ModSecurity is one of the best firewalls around and it will secure even scripts which aren't updated frequently since it can prevent attackers from using known exploits and security holes. Quite thorough info about every single intrusion attempt is recorded and the logs the firewall maintains are a lot more comprehensive than the standard logs created by the Apache server, so you can later examine them and determine whether you need to take additional measures so as to enhance the security of your script-driven Internet sites.
ModSecurity in Cloud Hosting
ModSecurity is supplied with all cloud hosting web servers, so if you decide to host your sites with our firm, they shall be resistant to a wide array of attacks. The firewall is turned on by default for all domains and subdomains, so there will be nothing you'll have to do on your end. You'll be able to stop ModSecurity for any website if needed, or to enable a detection mode, so all activity will be recorded, but the firewall will not take any real action. You'll be able to view comprehensive logs via your Hepsia Control Panel including the IP where the attack originated from, what the attacker wanted to do and how ModSecurity addressed the threat. As we take the safety of our customers' Internet sites seriously, we use a selection of commercial rules that we take from one of the top firms that maintain this sort of rules. Our administrators also add custom rules to ensure that your Internet sites shall be shielded from as many risks as possible.