Learn what ModSecurity is, what it does and what actually it can do to defend your web sites and web applications.
ModSecurity is an effective firewall for Apache web servers that's used to prevent attacks toward web apps. It monitors the HTTP traffic to a particular site in real time and prevents any intrusion attempts as soon as it identifies them. The firewall relies on a set of rules to accomplish that - as an example, attempting to log in to a script administrator area without success a few times activates one rule, sending a request to execute a particular file which may result in accessing the website triggers another rule, etc. ModSecurity is amongst the best firewalls out there and it will protect even scripts which are not updated on a regular basis since it can prevent attackers from using known exploits and security holes. Very comprehensive data about every intrusion attempt is recorded and the logs the firewall keeps are a lot more comprehensive than the regular logs generated by the Apache server, so you may later take a look at them and determine whether you need to take additional measures in order to improve the protection of your script-driven sites.
ModSecurity in Shared Hosting
ModSecurity comes standard with all shared hosting solutions which we supply and it'll be activated automatically for any domain or subdomain which you add/create in your Hepsia hosting Control Panel. The firewall has 3 different modes, so you can activate and disable it with simply a mouse click or set it to detection mode, so it'll maintain a log of all attacks, but it shall not do anything to stop them. The log for any of your Internet sites will contain detailed info such as the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules which we use are constantly updated and consist of both commercial ones that we get from a third-party security business and custom ones which our system administrators include in case that they detect a new kind of attacks. This way, the sites which you host here shall be much more secure without any action needed on your end.