ModSecurity is a plugin for Apache web servers which functions as a web application layer firewall. It's used to stop attacks toward script-driven websites by using security rules which contain certain expressions. This way, the firewall can block hacking and spamming attempts and shield even Internet sites which are not updated on a regular basis. For instance, multiple unsuccessful login attempts to a script administrative area or attempts to execute a specific file with the intention to get access to the script shall trigger particular rules, so ModSecurity will block these activities the moment it identifies them. The firewall is incredibly efficient as it monitors the entire HTTP traffic to a website in real time without slowing it down, so it can easily prevent an attack before any harm is done. It additionally maintains an exceptionally detailed log of all attack attempts that includes more info than typical Apache logs, so you could later check out the data and take extra measures to improve the security of your websites if required.
ModSecurity in Website Hosting
ModSecurity comes standard with all website hosting solutions that we supply and it'll be switched on automatically for any domain or subdomain that you add/create in your Hepsia hosting Control Panel. The firewall has 3 different modes, so you could activate and disable it with simply a click or set it to detection mode, so it will keep a log of all attacks, but it'll not do anything to prevent them. The log for any of your sites will include elaborate info including the nature of the attack, where it came from, what action was taken by ModSecurity, etc. The firewall rules that we use are frequently updated and consist of both commercial ones we get from a third-party security company and custom ones that our system admins include in the event that they detect a new sort of attacks. In this way, the sites that you host here shall be way more secure with no action required on your end.