ModSecurity is a plugin for Apache web servers which acts as a web application layer firewall. It is used to prevent attacks toward script-driven Internet sites through the use of security rules that contain certain expressions. That way, the firewall can prevent hacking and spamming attempts and protect even websites that aren't updated frequently. As an example, a number of unsuccessful login attempts to a script admin area or attempts to execute a particular file with the purpose to get access to the script shall trigger particular rules, so ModSecurity shall block these activities the moment it detects them. The firewall is incredibly efficient because it monitors the entire HTTP traffic to an Internet site in real time without slowing it down, so it can stop an attack before any damage is done. It additionally keeps an exceptionally detailed log of all attack attempts that includes more information than standard Apache logs, so you could later examine the data and take extra measures to improve the security of your websites if required.
ModSecurity in Hosting
ModSecurity comes standard with all hosting plans which we provide and it'll be switched on automatically for any domain or subdomain which you add/create in your Hepsia hosting Control Panel. The firewall has 3 different modes, so you could switch on and deactivate it with only a mouse click or set it to detection mode, so it shall maintain a log of all attacks, but it'll not do anything to stop them. The log for any of your websites shall include elaborate information such as the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules we use are constantly updated and consist of both commercial ones we get from a third-party security business and custom ones that our system administrators include in the event that they detect a new kind of attacks. In this way, the sites which you host here will be much more protected with no action expected on your end.