ModSecurity is an efficient firewall for Apache web servers that is used to prevent attacks towards web applications. It tracks the HTTP traffic to a certain website in real time and stops any intrusion attempts as soon as it identifies them. The firewall uses a set of rules to do this - for example, attempting to log in to a script administrator area unsuccessfully a few times activates one rule, sending a request to execute a certain file which could result in gaining access to the Internet site triggers another rule, and so on. ModSecurity is among the best firewalls out there and it will preserve even scripts which are not updated frequently as it can prevent attackers from using known exploits and security holes. Quite thorough information about each and every intrusion attempt is recorded and the logs the firewall keeps are considerably more detailed than the regular logs generated by the Apache server, so you may later examine them and determine whether you need to take additional measures in order to boost the protection of your script-driven websites.

ModSecurity in Shared Hosting

ModSecurity is available with every single shared hosting solution that we provide and it's activated by default for any domain or subdomain that you add via your Hepsia Control Panel. In the event that it interferes with any of your apps or you would like to disable it for some reason, you shall be able to accomplish that through the ModSecurity area of Hepsia with merely a click. You may also use a passive mode, so the firewall will discover potential attacks and keep a log, but won't take any action. You can view extensive logs in the same section, including the IP where the attack came from, what exactly the attacker attempted to do and at what time, what ModSecurity did, and so on. For optimum safety of our customers we use a group of commercial firewall rules blended with custom ones that are provided by our system administrators.