ModSecurity is a highly effective firewall for Apache web servers that is employed to prevent attacks towards web apps. It monitors the HTTP traffic to a certain Internet site in real time and stops any intrusion attempts the moment it detects them. The firewall uses a set of rules to do this - for instance, attempting to log in to a script admin area without success several times triggers one rule, sending a request to execute a specific file that could result in getting access to the site triggers another rule, etc. ModSecurity is among the best firewalls on the market and it'll preserve even scripts which are not updated frequently since it can prevent attackers from employing known exploits and security holes. Very comprehensive data about every intrusion attempt is recorded and the logs the firewall keeps are far more comprehensive than the conventional logs created by the Apache server, so you can later take a look at them and determine if you need to take additional measures in order to enhance the safety of your script-driven websites.

ModSecurity in Shared Hosting

We provide ModSecurity with all shared hosting packages, so your Internet apps shall be resistant to malicious attacks. The firewall is turned on by default for all domains and subdomains, but in case you would like, you shall be able to stop it via the respective section of your Hepsia Control Panel. You'll be able to also activate a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you'll find in Hepsia are extremely detailed and offer information about the nature of any attack, when it took place and from what IP address, the firewall rule that was triggered, etcetera. We use a set of commercial rules that are often updated, but sometimes our admins include custom rules as well in order to efficiently protect the sites hosted on our servers.