The ModSecurity Apache plugin now enhanced to prevent brute force attacks

Our administrators have upgraded the ModSecurity Apache plugin on the Lonex web hosting platform to now prevent “brute force” attacks.

Brute force attacks are attempts to guess the admin login details of a web application by using random combinations of usernames and passwords.

To fight brute force attacks, the ModSecurity firewall has been configured to block an IP address, which has sent more than 15 login requests to the server within a period of 3 minutes.

To minimize the potential number of brute force attack attempts, we have also configured our App Installer to change the “admin” username that is usually assigned to you by default with most applications.

 

Leave a Reply