ModSecurity is an efficient firewall for Apache web servers that is employed to stop attacks against web apps. It keeps track of the HTTP traffic to a specific Internet site in real time and blocks any intrusion attempts the moment it discovers them. The firewall relies on a set of rules to do that - as an illustration, attempting to log in to a script administrator area without success several times triggers one rule, sending a request to execute a certain file which may result in accessing the Internet site triggers a different rule, etcetera. ModSecurity is among the best firewalls around and it will secure even scripts that are not updated often since it can prevent attackers from employing known exploits and security holes. Very detailed info about each intrusion attempt is recorded and the logs the firewall maintains are considerably more comprehensive than the standard logs created by the Apache server, so you could later take a look at them and determine whether you need to take extra measures in order to increase the protection of your script-driven sites.

ModSecurity in Shared Web Hosting

ModSecurity is offered with every single shared web hosting solution that we provide and it is switched on by default for every domain or subdomain which you include through your Hepsia CP. If it disrupts any of your applications or you'd like to disable it for some reason, you will be able to do that through the ModSecurity area of Hepsia with just a mouse click. You may also activate a passive mode, so the firewall will recognize potential attacks and keep a log, but won't take any action. You could view extensive logs in the very same section, including the IP where the attack came from, exactly what the attacker attempted to do and at what time, what ModSecurity did, etcetera. For maximum protection of our customers we use a set of commercial firewall rules combined with custom ones which are included by our system admins.