ModSecurity is a highly effective firewall for Apache web servers that is employed to stop attacks toward web apps. It monitors the HTTP traffic to a specific Internet site in real time and stops any intrusion attempts the moment it identifies them. The firewall relies on a set of rules to do that - for example, trying to log in to a script administration area unsuccessfully several times activates one rule, sending a request to execute a certain file that may result in accessing the website triggers another rule, etcetera. ModSecurity is one of the best firewalls out there and it will protect even scripts which aren't updated on a regular basis because it can prevent attackers from employing known exploits and security holes. Very comprehensive information about every intrusion attempt is recorded and the logs the firewall keeps are considerably more detailed than the conventional logs created by the Apache server, so you can later take a look at them and decide whether you need to take additional measures in order to boost the security of your script-driven Internet sites.
ModSecurity in Shared Hosting
ModSecurity is offered with each and every shared hosting solution which we offer and it's switched on by default for every domain or subdomain which you add via your Hepsia CP. In case it disrupts any of your applications or you would like to disable it for any reason, you will be able to achieve that through the ModSecurity area of Hepsia with just a click. You may also use a passive mode, so the firewall will discover potential attacks and keep a log, but will not take any action. You'll be able to view detailed logs in the exact same section, including the IP where the attack came from, what exactly the attacker tried to do and at what time, what ModSecurity did, and so on. For maximum safety of our clients we use a set of commercial firewall rules mixed with custom ones which are added by our system admins.