ModSecurity is an efficient firewall for Apache web servers that's employed to prevent attacks towards web applications. It monitors the HTTP traffic to a specific site in real time and blocks any intrusion attempts the moment it discovers them. The firewall relies on a set of rules to accomplish that - as an example, trying to log in to a script administration area without success many times sets off one rule, sending a request to execute a particular file which could result in accessing the website triggers another rule, and so on. ModSecurity is among the best firewalls available on the market and it will secure even scripts which are not updated often since it can prevent attackers from using known exploits and security holes. Quite comprehensive data about every single intrusion attempt is recorded and the logs the firewall keeps are much more detailed than the standard logs generated by the Apache server, so you could later examine them and decide whether you need to take more measures in order to increase the security of your script-driven Internet sites.
ModSecurity in Shared Web Hosting
We offer ModSecurity with all shared web hosting packages, so your web applications will be shielded from malicious attacks. The firewall is turned on as standard for all domains and subdomains, but if you would like, you will be able to stop it using the respective area of your Hepsia Control Panel. You could also activate a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs which you'll find inside Hepsia are incredibly detailed and feature data about the nature of any attack, when it happened and from what IP, the firewall rule which was triggered, etc. We employ a range of commercial rules that are often updated, but sometimes our administrators include custom rules as well so as to efficiently protect the websites hosted on our machines.