ModSecurity is a highly effective firewall for Apache web servers that's used to stop attacks toward web apps. It tracks the HTTP traffic to a certain website in real time and prevents any intrusion attempts the moment it detects them. The firewall uses a set of rules to accomplish that - for instance, attempting to log in to a script administrator area without success several times activates one rule, sending a request to execute a particular file that could result in getting access to the site triggers a different rule, and so forth. ModSecurity is among the best firewalls available and it will protect even scripts that are not updated often since it can prevent attackers from employing known exploits and security holes. Very comprehensive data about each intrusion attempt is recorded and the logs the firewall maintains are far more detailed than the regular logs created by the Apache server, so you can later examine them and decide if you need to take more measures so as to increase the safety of your script-driven websites.
ModSecurity in Cloud Hosting
ModSecurity can be found with each and every cloud hosting package that we provide and it is switched on by default for every domain or subdomain that you include via your Hepsia CP. In the event that it disrupts any of your programs or you would like to disable it for some reason, you will be able to do this through the ModSecurity section of Hepsia with just a click. You may also use a passive mode, so the firewall will recognize potential attacks and keep a log, but won't take any action. You can view extensive logs in the same section, including the IP address where the attack came from, what precisely the attacker attempted to do and at what time, what ModSecurity did, etc. For maximum safety of our clients we use a group of commercial firewall rules mixed with custom ones that are added by our system admins.