ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It's used to prevent attacks towards script-driven sites by using security rules that contain particular expressions. This way, the firewall can block hacking and spamming attempts and shield even Internet sites that aren't updated on a regular basis. For instance, multiple failed login attempts to a script admin area or attempts to execute a certain file with the purpose to get access to the script shall trigger particular rules, so ModSecurity shall stop these activities the second it discovers them. The firewall is very efficient since it monitors the entire HTTP traffic to an Internet site in real time without slowing it down, so it can easily stop an attack before any harm is done. It furthermore maintains an exceptionally thorough log of all attack attempts which includes more information than typical Apache logs, so you could later check out the data and take further measures to increase the security of your websites if required.

ModSecurity in Shared Web Hosting

ModSecurity comes by default with all shared web hosting packages which we offer and it shall be activated automatically for any domain or subdomain you add/create in your Hepsia hosting CP. The firewall has three different modes, so you can activate and disable it with only a click or set it to detection mode, so it'll keep a log of all attacks, but it will not do anything to stop them. The log for any of your sites will contain in-depth info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules which we use are regularly updated and comprise of both commercial ones we get from a third-party security business and custom ones that our system administrators include in case that they detect a new sort of attacks. That way, the websites you host here will be way more protected without any action needed on your end.