ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its overall performance and in case it identifies an intrusion attempt, it blocks it. The firewall also keeps a more comprehensive log for the traffic than any server does, so you shall manage to keep track of what is happening with your websites a lot better than if you rely merely on standard logs. ModSecurity uses security rules based on which it stops attacks. For example, it detects whether somebody is trying to log in to the admin area of a given script a number of times or if a request is sent to execute a file with a specific command. In these cases these attempts set off the corresponding rules and the software blocks the attempts instantly, after that records in-depth information about them within its logs. ModSecurity is among the most effective software firewalls available and it could easily protect your web applications against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins often.

ModSecurity in Website Hosting

ModSecurity comes standard with all website hosting packages which we provide and it shall be switched on automatically for any domain or subdomain you add/create in your Hepsia hosting CP. The firewall has 3 different modes, so you can activate and deactivate it with just a mouse click or set it to detection mode, so it'll keep a log of all attacks, but it shall not do anything to stop them. The log for each of your sites shall feature comprehensive info such as the nature of the attack, where it originated from, what action was taken by ModSecurity, etcetera. The firewall rules we use are frequently updated and consist of both commercial ones which we get from a third-party security firm and custom ones that our system admins add in case that they detect a new sort of attacks. In this way, the sites which you host here will be way more protected with no action required on your end.