On my shared Linux hosting from Hostgator, I had ModSecurity enabled. My website is a WordPress site, where the Google login redirection URL after successful authentication was being blocked by ModSecurity throwing a 403.
On disabling ModSecurity, the Google login redirection worked fine.
What I wanted to know is, disabling the ModSecurity on my shared hosting and instead using Cloudflare free version on the website, is it a good step for security? What extra thing can I do to ensure website security ?