Learn how having ModSecurity activated in your web hosting account will help silently with your web site protection.
ModSecurity is a highly effective web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its functionality and in case it discovers an intrusion attempt, it prevents it. The firewall additionally maintains a more thorough log for the site visitors than any server does, so you'll be able to monitor what's going on with your Internet sites much better than if you rely only on standard logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it detects whether somebody is attempting to log in to the administration area of a given script a number of times or if a request is sent to execute a file with a particular command. In these instances these attempts trigger the corresponding rules and the software blocks the attempts right away, and then records detailed info about them inside its logs. ModSecurity is among the most effective software firewalls on the market and it could easily protect your web apps against a huge number of threats and vulnerabilities, especially in case you don’t update them or their plugins regularly.
ModSecurity in Website Hosting
ModSecurity is offered with every website hosting solution which we provide and it's activated by default for every domain or subdomain which you add through your Hepsia Control Panel. In case it disrupts any of your apps or you'd like to disable it for whatever reason, you'll be able to do that through the ModSecurity section of Hepsia with merely a click. You could also activate a passive mode, so the firewall will recognize possible attacks and keep a log, but will not take any action. You can view comprehensive logs in the exact same section, including the IP where the attack came from, exactly what the attacker attempted to do and at what time, what ModSecurity did, and so forth. For optimum safety of our clients we use a group of commercial firewall rules blended with custom ones that are provided by our system administrators.