ModSecurity is a powerful web application layer firewall for Apache web servers. It monitors the entire HTTP traffic to an Internet site without affecting its performance and when it identifies an intrusion attempt, it prevents it. The firewall additionally maintains a more comprehensive log for the traffic than any server does, so you will be able to keep an eye on what is happening with your websites better than if you rely only on standard logs. ModSecurity uses security rules based on which it helps prevent attacks. For instance, it detects if anyone is trying to log in to the admin area of a certain script several times or if a request is sent to execute a file with a specific command. In these situations these attempts set off the corresponding rules and the firewall software blocks the attempts in real time, and then records detailed information about them within its logs. ModSecurity is among the best software firewalls out there and it could easily protect your web applications against a large number of threats and vulnerabilities, particularly if you don’t update them or their plugins frequently.

ModSecurity in Shared Website Hosting

ModSecurity can be found with each shared website hosting package which we offer and it's switched on by default for any domain or subdomain which you add through your Hepsia CP. If it disrupts any of your applications or you'd like to disable it for any reason, you shall be able to accomplish that through the ModSecurity section of Hepsia with just a mouse click. You could also enable a passive mode, so the firewall will identify potential attacks and maintain a log, but will not take any action. You'll be able to view extensive logs in the very same section, including the IP address where the attack came from, what precisely the attacker tried to do and at what time, what ModSecurity did, etc. For maximum security of our customers we use a set of commercial firewall rules blended with custom ones which are provided by our system admins.