ModSecurity is a powerful firewall for Apache web servers that is employed to prevent attacks toward web applications. It keeps track of the HTTP traffic to a certain site in real time and prevents any intrusion attempts the moment it identifies them. The firewall uses a set of rules to do that - as an example, attempting to log in to a script administrator area unsuccessfully many times activates one rule, sending a request to execute a certain file that may result in accessing the site triggers another rule, etcetera. ModSecurity is one of the best firewalls available on the market and it'll secure even scripts that aren't updated frequently as it can prevent attackers from using known exploits and security holes. Incredibly thorough data about every intrusion attempt is recorded and the logs the firewall keeps are far more comprehensive than the regular logs provided by the Apache server, so you can later examine them and determine if you need to take additional measures in order to boost the protection of your script-driven sites.

ModSecurity in Shared Web Hosting

We provide ModSecurity with all shared web hosting packages, so your Internet apps shall be protected against malicious attacks. The firewall is activated by default for all domains and subdomains, but in case you'd like, you'll be able to stop it through the respective section of your Hepsia CP. You'll be able to also switch on a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs that you'll discover inside Hepsia are extremely detailed and feature data about the nature of any attack, when it transpired and from what IP, the firewall rule which was triggered, etc. We employ a set of commercial rules which are constantly updated, but sometimes our admins add custom rules as well so as to better protect the Internet sites hosted on our machines.