ModSecurity is an effective firewall for Apache web servers that's used to prevent attacks toward web applications. It monitors the HTTP traffic to a specific website in real time and prevents any intrusion attempts the instant it discovers them. The firewall uses a set of rules to do that - as an illustration, trying to log in to a script administrator area without success several times triggers one rule, sending a request to execute a particular file which may result in getting access to the Internet site triggers another rule, and so on. ModSecurity is among the best firewalls available and it'll preserve even scripts that aren't updated frequently since it can prevent attackers from using known exploits and security holes. Very thorough data about every single intrusion attempt is recorded and the logs the firewall maintains are considerably more specific than the regular logs provided by the Apache server, so you may later examine them and decide whether you need to take additional measures so as to boost the protection of your script-driven Internet sites.

ModSecurity in Hosting

ModSecurity comes by default with all hosting solutions that we provide and it shall be switched on automatically for any domain or subdomain that you add/create in your Hepsia hosting CP. The firewall has three different modes, so you can activate and deactivate it with just a mouse click or set it to detection mode, so it shall keep a log of all attacks, but it shall not do anything to prevent them. The log for each of your sites shall include detailed information including the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules we use are regularly updated and incorporate both commercial ones that we get from a third-party security firm and custom ones that our system admins add in case that they detect a new type of attacks. That way, the sites which you host here will be much more secure with no action expected on your end.