ModSecurity is a powerful web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a website without affecting its functionality and when it discovers an intrusion attempt, it prevents it. The firewall also keeps a more detailed log for the traffic than any web server does, so you shall be able to monitor what's happening with your sites better than if you rely merely on conventional logs. ModSecurity uses security rules based on which it prevents attacks. For example, it identifies whether somebody is attempting to log in to the administrator area of a particular script a number of times or if a request is sent to execute a file with a certain command. In these cases these attempts trigger the corresponding rules and the firewall hinders the attempts in real time, and then records in-depth information about them within its logs. ModSecurity is among the best software firewalls on the market and it can protect your web apps against thousands of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.
ModSecurity in Shared Web Hosting
ModSecurity is offered with every shared web hosting package which we provide and it is switched on by default for any domain or subdomain that you include through your Hepsia CP. If it disrupts any of your apps or you'd like to disable it for some reason, you shall be able to do that through the ModSecurity section of Hepsia with only a mouse click. You can also activate a passive mode, so the firewall will discover possible attacks and keep a log, but will not take any action. You'll be able to see extensive logs in the same section, including the IP address where the attack originated from, what exactly the attacker attempted to do and at what time, what ModSecurity did, and so on. For maximum protection of our clients we use a group of commercial firewall rules mixed with custom ones which are included by our system administrators.