ModSecurity is a powerful firewall for Apache web servers that is used to prevent attacks toward web apps. It monitors the HTTP traffic to a specific Internet site in real time and stops any intrusion attempts the moment it discovers them. The firewall uses a set of rules to do this - as an example, attempting to log in to a script administration area unsuccessfully many times triggers one rule, sending a request to execute a certain file which may result in getting access to the Internet site triggers another rule, and so forth. ModSecurity is among the best firewalls available on the market and it will secure even scripts which are not updated frequently because it can prevent attackers from using known exploits and security holes. Very thorough information about every intrusion attempt is recorded and the logs the firewall maintains are far more detailed than the standard logs generated by the Apache server, so you could later take a look at them and determine whether you need to take more measures so as to increase the security of your script-driven Internet sites.

ModSecurity in Shared Web Hosting

We provide ModSecurity with all shared web hosting plans, so your Internet applications shall be resistant to harmful attacks. The firewall is switched on as standard for all domains and subdomains, but in case you would like, you'll be able to stop it via the respective part of your Hepsia CP. You can also switch on a detection mode, so ModSecurity shall keep a log as intended, but shall not take any action. The logs that you will discover in Hepsia are extremely detailed and include info about the nature of any attack, when it took place and from what IP, the firewall rule that was triggered, and so forth. We use a set of commercial rules that are constantly updated, but sometimes our administrators add custom rules as well in order to efficiently protect the websites hosted on our machines.