ModSecurity is a powerful firewall for Apache web servers that is employed to prevent attacks towards web apps. It monitors the HTTP traffic to a certain site in real time and blocks any intrusion attempts as soon as it discovers them. The firewall relies on a set of rules to do that - for example, attempting to log in to a script administration area without success a few times triggers one rule, sending a request to execute a specific file that could result in accessing the site triggers another rule, and so on. ModSecurity is amongst the best firewalls available on the market and it will preserve even scripts which aren't updated frequently because it can prevent attackers from employing known exploits and security holes. Incredibly comprehensive info about each and every intrusion attempt is recorded and the logs the firewall maintains are far more specific than the regular logs created by the Apache server, so you can later analyze them and determine if you need to take more measures in order to improve the safety of your script-driven Internet sites.
ModSecurity in Shared Web Hosting
ModSecurity comes by default with all shared web hosting packages that we supply and it will be activated automatically for any domain or subdomain that you add/create inside your Hepsia hosting Control Panel. The firewall has three different modes, so you could switch on and disable it with only a click or set it to detection mode, so it will maintain a log of all attacks, but it shall not do anything to stop them. The log for any of your websites will contain detailed info such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules we use are regularly updated and comprise of both commercial ones we get from a third-party security firm and custom ones which our system admins add in case that they detect a new type of attacks. That way, the websites that you host here will be a lot more protected without any action needed on your end.