ModSecurity is a powerful firewall for Apache web servers that is employed to prevent attacks against web applications. It monitors the HTTP traffic to a certain Internet site in real time and blocks any intrusion attempts the moment it discovers them. The firewall uses a set of rules to do this - for instance, trying to log in to a script admin area unsuccessfully a few times triggers one rule, sending a request to execute a specific file which could result in getting access to the website triggers a different rule, and so on. ModSecurity is amongst the best firewalls available on the market and it will preserve even scripts that are not updated often as it can prevent attackers from using known exploits and security holes. Very comprehensive data about every single intrusion attempt is recorded and the logs the firewall maintains are a lot more specific than the standard logs generated by the Apache server, so you could later take a look at them and decide whether you need to take additional measures in order to enhance the security of your script-driven sites.
ModSecurity in Web Hosting
ModSecurity comes standard with all web hosting solutions that we supply and it'll be activated automatically for any domain or subdomain that you add/create within your Hepsia hosting Control Panel. The firewall has three different modes, so you can activate and deactivate it with just a click or set it to detection mode, so it shall keep a log of all attacks, but it'll not do anything to prevent them. The log for any of your Internet sites will feature detailed info which includes the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules which we use are constantly updated and comprise of both commercial ones that we get from a third-party security company and custom ones our system admins include in case that they detect a new sort of attacks. This way, the websites which you host here will be way more secure without any action expected on your end.