ModSecurity is an effective firewall for Apache web servers which is used to prevent attacks towards web applications. It monitors the HTTP traffic to a given website in real time and blocks any intrusion attempts the moment it detects them. The firewall relies on a set of rules to do that - for example, trying to log in to a script administration area without success several times activates one rule, sending a request to execute a certain file that may result in accessing the site triggers a different rule, etc. ModSecurity is among the best firewalls available on the market and it'll secure even scripts that are not updated on a regular basis because it can prevent attackers from employing known exploits and security holes. Very detailed information about every intrusion attempt is recorded and the logs the firewall keeps are much more specific than the conventional logs created by the Apache server, so you can later examine them and determine whether you need to take extra measures so as to enhance the safety of your script-driven Internet sites.

ModSecurity in Shared Hosting

ModSecurity comes by default with all shared hosting plans which we offer and it will be activated automatically for any domain or subdomain which you add/create in your Hepsia hosting CP. The firewall has 3 different modes, so you could switch on and disable it with simply a click or set it to detection mode, so it shall keep a log of all attacks, but it will not do anything to prevent them. The log for each of your sites shall contain elaborate info including the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules which we use are regularly updated and consist of both commercial ones which we get from a third-party security company and custom ones which our system admins include in case that they detect a new sort of attacks. That way, the websites which you host here shall be a lot more protected without any action needed on your end.