ModSecurity is a highly effective firewall for Apache web servers that's employed to prevent attacks towards web applications. It keeps track of the HTTP traffic to a certain site in real time and stops any intrusion attempts the moment it detects them. The firewall uses a set of rules to do this - as an illustration, attempting to log in to a script administrator area unsuccessfully several times sets off one rule, sending a request to execute a certain file that may result in accessing the site triggers a different rule, etc. ModSecurity is amongst the best firewalls on the market and it'll protect even scripts that are not updated regularly since it can prevent attackers from using known exploits and security holes. Very detailed information about each and every intrusion attempt is recorded and the logs the firewall maintains are considerably more specific than the regular logs created by the Apache server, so you could later take a look at them and decide whether you need to take additional measures in order to enhance the security of your script-driven sites.

ModSecurity in Web Hosting

We offer ModSecurity with all web hosting plans, so your Internet apps will be shielded from harmful attacks. The firewall is switched on as standard for all domains and subdomains, but if you'd like, you'll be able to stop it using the respective area of your Hepsia CP. You'll be able to also switch on a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs which you will find in Hepsia are extremely detailed and feature data about the nature of any attack, when it happened and from what IP, the firewall rule that was triggered, etcetera. We use a range of commercial rules which are constantly updated, but sometimes our admins add custom rules as well in order to efficiently protect the websites hosted on our machines.