ModSecurity is an efficient firewall for Apache web servers that is used to prevent attacks toward web apps. It keeps track of the HTTP traffic to a given Internet site in real time and prevents any intrusion attempts as soon as it identifies them. The firewall relies on a set of rules to do this - for example, attempting to log in to a script administrator area without success several times sets off one rule, sending a request to execute a specific file which may result in accessing the Internet site triggers a different rule, and so on. ModSecurity is one of the best firewalls available and it will protect even scripts that aren't updated frequently because it can prevent attackers from using known exploits and security holes. Incredibly thorough data about every single intrusion attempt is recorded and the logs the firewall maintains are a lot more specific than the standard logs provided by the Apache server, so you can later take a look at them and decide if you need to take extra measures in order to boost the protection of your script-driven websites.
ModSecurity in Cloud Hosting
We provide ModSecurity with all cloud hosting plans, so your web applications shall be protected against malicious attacks. The firewall is turned on by default for all domains and subdomains, but in case you would like, you will be able to stop it through the respective part of your Hepsia CP. You can also activate a detection mode, so ModSecurity will keep a log as intended, but shall not take any action. The logs that you will find inside Hepsia are extremely detailed and offer information about the nature of any attack, when it occurred and from what IP address, the firewall rule which was triggered, etcetera. We use a group of commercial rules which are constantly updated, but sometimes our administrators include custom rules as well so as to better protect the Internet sites hosted on our servers.