ModSecurity is a powerful firewall for Apache web servers which is used to prevent attacks toward web applications. It monitors the HTTP traffic to a specific website in real time and stops any intrusion attempts as soon as it discovers them. The firewall uses a set of rules to accomplish that - for example, trying to log in to a script admin area without success several times activates one rule, sending a request to execute a certain file that could result in gaining access to the Internet site triggers a different rule, and so on. ModSecurity is one of the best firewalls available and it'll protect even scripts which aren't updated on a regular basis as it can prevent attackers from using known exploits and security holes. Quite comprehensive data about each intrusion attempt is recorded and the logs the firewall keeps are far more detailed than the standard logs generated by the Apache server, so you may later examine them and decide if you need to take extra measures in order to increase the safety of your script-driven websites.
ModSecurity in Shared Hosting
ModSecurity can be found with every shared hosting solution that we offer and it is switched on by default for any domain or subdomain that you include through your Hepsia Control Panel. In case it interferes with any of your applications or you would like to disable it for whatever reason, you will be able to accomplish that through the ModSecurity area of Hepsia with only a mouse click. You could also activate a passive mode, so the firewall will recognize potential attacks and maintain a log, but will not take any action. You could see comprehensive logs in the very same section, including the IP address where the attack came from, what precisely the attacker tried to do and at what time, what ModSecurity did, and so forth. For maximum safety of our customers we use a collection of commercial firewall rules mixed with custom ones that are added by our system admins.