ModSecurity is a highly effective firewall for Apache web servers that's employed to prevent attacks towards web applications. It tracks the HTTP traffic to a given Internet site in real time and prevents any intrusion attempts as soon as it detects them. The firewall uses a set of rules to do this - for instance, trying to log in to a script administrator area without success a few times sets off one rule, sending a request to execute a certain file which may result in gaining access to the site triggers a different rule, and so forth. ModSecurity is one of the best firewalls on the market and it will preserve even scripts which are not updated frequently since it can prevent attackers from employing known exploits and security holes. Very detailed data about every intrusion attempt is recorded and the logs the firewall keeps are considerably more comprehensive than the conventional logs provided by the Apache server, so you could later examine them and decide whether you need to take more measures so as to boost the safety of your script-driven websites.

ModSecurity in Web Hosting

We offer ModSecurity with all web hosting plans, so your web apps shall be shielded from malicious attacks. The firewall is switched on by default for all domains and subdomains, but if you would like, you'll be able to stop it using the respective section of your Hepsia Control Panel. You could also switch on a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs that you'll discover within Hepsia are quite detailed and include information about the nature of any attack, when it transpired and from what IP, the firewall rule that was triggered, etc. We use a group of commercial rules which are often updated, but sometimes our admins include custom rules as well so as to better protect the websites hosted on our servers.