ModSecurity is a highly effective firewall for Apache web servers that is employed to prevent attacks against web apps. It tracks the HTTP traffic to a particular site in real time and prevents any intrusion attempts the moment it discovers them. The firewall uses a set of rules to do that - as an example, attempting to log in to a script admin area without success several times triggers one rule, sending a request to execute a certain file which may result in getting access to the Internet site triggers a different rule, etc. ModSecurity is amongst the best firewalls available and it'll secure even scripts which aren't updated on a regular basis as it can prevent attackers from employing known exploits and security holes. Quite thorough info about every single intrusion attempt is recorded and the logs the firewall maintains are much more specific than the standard logs provided by the Apache server, so you could later examine them and determine whether you need to take additional measures so as to improve the safety of your script-driven sites.
ModSecurity in Cloud Hosting
We provide ModSecurity with all cloud hosting solutions, so your web apps will be protected against harmful attacks. The firewall is turned on by default for all domains and subdomains, but in case you would like, you'll be able to stop it using the respective part of your Hepsia Control Panel. You'll be able to also switch on a detection mode, so ModSecurity will keep a log as intended, but will not take any action. The logs which you will find in Hepsia are quite detailed and include data about the nature of any attack, when it transpired and from what IP address, the firewall rule which was triggered, etcetera. We employ a set of commercial rules that are often updated, but sometimes our administrators add custom rules as well in order to better protect the websites hosted on our servers.