ModSecurity is a potent web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to a website without affecting its functionality and if it identifies an intrusion attempt, it blocks it. The firewall also keeps a more thorough log for the traffic than any server does, so you'll manage to keep track of what's happening with your sites much better than if you rely simply on conventional logs. ModSecurity uses security rules based on which it stops attacks. For example, it identifies whether anyone is attempting to log in to the administrator area of a certain script several times or if a request is sent to execute a file with a certain command. In such instances these attempts set off the corresponding rules and the firewall blocks the attempts instantly, and then records in-depth details about them within its logs. ModSecurity is among the best software firewalls available and it can protect your web applications against a huge number of threats and vulnerabilities, particularly in case you don’t update them or their plugins regularly.
ModSecurity in Shared Web Hosting
ModSecurity can be found with each and every shared web hosting plan which we offer and it is activated by default for any domain or subdomain that you add via your Hepsia Control Panel. In case it interferes with any of your apps or you'd like to disable it for any reason, you will be able to do that through the ModSecurity section of Hepsia with simply a click. You may also activate a passive mode, so the firewall will recognize potential attacks and keep a log, but won't take any action. You'll be able to see detailed logs in the same section, including the IP address where the attack came from, exactly what the attacker aimed to do and at what time, what ModSecurity did, etc. For optimum safety of our customers we use a set of commercial firewall rules blended with custom ones that are added by our system administrators.