ModSecurity is an efficient firewall for Apache web servers which is used to stop attacks toward web applications. It monitors the HTTP traffic to a given site in real time and blocks any intrusion attempts the moment it detects them. The firewall uses a set of rules to do this - for example, trying to log in to a script administrator area unsuccessfully several times sets off one rule, sending a request to execute a particular file that could result in accessing the website triggers another rule, and so on. ModSecurity is amongst the best firewalls available on the market and it'll secure even scripts which aren't updated on a regular basis because it can prevent attackers from using known exploits and security holes. Quite comprehensive information about every intrusion attempt is recorded and the logs the firewall maintains are much more specific than the regular logs provided by the Apache server, so you can later analyze them and decide if you need to take additional measures so as to boost the security of your script-driven Internet sites.
ModSecurity in Website Hosting
ModSecurity is available with every single website hosting solution that we offer and it is turned on by default for every domain or subdomain which you include via your Hepsia Control Panel. If it disrupts any of your apps or you'd like to disable it for whatever reason, you'll be able to do that through the ModSecurity section of Hepsia with just a click. You can also activate a passive mode, so the firewall will recognize possible attacks and maintain a log, but will not take any action. You'll be able to view detailed logs in the exact same section, including the IP address where the attack came from, exactly what the attacker tried to do and at what time, what ModSecurity did, and so forth. For maximum security of our clients we use a set of commercial firewall rules combined with custom ones which are included by our system administrators.