ModSecurity is an effective firewall for Apache web servers that's used to stop attacks towards web apps. It monitors the HTTP traffic to a particular website in real time and stops any intrusion attempts the moment it detects them. The firewall uses a set of rules to do that - as an illustration, trying to log in to a script administrator area unsuccessfully many times sets off one rule, sending a request to execute a certain file which may result in accessing the website triggers another rule, etc. ModSecurity is one of the best firewalls out there and it'll protect even scripts which are not updated regularly as it can prevent attackers from using known exploits and security holes. Very detailed data about each and every intrusion attempt is recorded and the logs the firewall keeps are a lot more comprehensive than the standard logs generated by the Apache server, so you may later analyze them and decide if you need to take more measures in order to enhance the protection of your script-driven websites.
ModSecurity in Cloud Hosting
We provide ModSecurity with all cloud hosting packages, so your Internet applications shall be shielded from destructive attacks. The firewall is switched on by default for all domains and subdomains, but in case you would like, you'll be able to stop it using the respective part of your Hepsia Control Panel. You'll be able to also switch on a detection mode, so ModSecurity will keep a log as intended, but won't take any action. The logs that you will discover within Hepsia are extremely detailed and feature info about the nature of any attack, when it transpired and from what IP, the firewall rule which was triggered, and so on. We use a group of commercial rules which are regularly updated, but sometimes our admins include custom rules as well so as to efficiently protect the Internet sites hosted on our machines.