Find out what ModSecurity is, how it works and precisely what it does so as to protect your Internet sites and applications.
ModSecurity is a powerful firewall for Apache web servers which is used to stop attacks against web applications. It keeps track of the HTTP traffic to a certain website in real time and stops any intrusion attempts the instant it discovers them. The firewall relies on a set of rules to accomplish that - for example, attempting to log in to a script administrator area without success a few times sets off one rule, sending a request to execute a specific file that may result in accessing the site triggers another rule, etc. ModSecurity is amongst the best firewalls out there and it'll preserve even scripts that aren't updated on a regular basis since it can prevent attackers from employing known exploits and security holes. Quite detailed information about every single intrusion attempt is recorded and the logs the firewall maintains are far more comprehensive than the standard logs created by the Apache server, so you may later take a look at them and decide whether you need to take extra measures so as to increase the safety of your script-driven Internet sites.
ModSecurity in Shared Hosting
ModSecurity is offered with each shared hosting package that we provide and it's turned on by default for every domain or subdomain which you add via your Hepsia Control Panel. If it disrupts any of your programs or you would like to disable it for some reason, you'll be able to achieve that through the ModSecurity section of Hepsia with simply a click. You can also enable a passive mode, so the firewall will detect possible attacks and keep a log, but shall not take any action. You can view detailed logs in the same section, including the IP where the attack came from, what exactly the attacker aimed to do and at what time, what ModSecurity did, etc. For max security of our customers we use a set of commercial firewall rules blended with custom ones which are provided by our system administrators.