ModSecurity is a highly effective firewall for Apache web servers which is employed to stop attacks towards web applications. It keeps track of the HTTP traffic to a particular site in real time and blocks any intrusion attempts the moment it detects them. The firewall relies on a set of rules to do this - as an example, trying to log in to a script administration area without success a few times activates one rule, sending a request to execute a certain file that could result in accessing the Internet site triggers another rule, and so forth. ModSecurity is among the best firewalls available and it'll preserve even scripts that are not updated on a regular basis because it can prevent attackers from employing known exploits and security holes. Incredibly detailed information about each and every intrusion attempt is recorded and the logs the firewall maintains are far more specific than the standard logs provided by the Apache server, so you could later analyze them and determine if you need to take extra measures so as to improve the security of your script-driven sites.
ModSecurity in Web Hosting
ModSecurity can be found with each web hosting solution that we offer and it's turned on by default for any domain or subdomain that you include via your Hepsia Control Panel. In the event that it disrupts any of your applications or you would like to disable it for some reason, you shall be able to do this through the ModSecurity section of Hepsia with simply a click. You may also activate a passive mode, so the firewall will recognize potential attacks and maintain a log, but shall not take any action. You can see extensive logs in the very same section, including the IP where the attack originated from, exactly what the attacker aimed to do and at what time, what ModSecurity did, and so forth. For max protection of our clients we use a group of commercial firewall rules combined with custom ones which are included by our system admins.