ModSecurity is a powerful firewall for Apache web servers which is used to prevent attacks toward web apps. It keeps track of the HTTP traffic to a given Internet site in real time and blocks any intrusion attempts the moment it discovers them. The firewall uses a set of rules to do that - for example, attempting to log in to a script administration area unsuccessfully several times sets off one rule, sending a request to execute a certain file which may result in accessing the website triggers another rule, etc. ModSecurity is one of the best firewalls available and it will preserve even scripts which aren't updated often as it can prevent attackers from employing known exploits and security holes. Quite comprehensive information about every intrusion attempt is recorded and the logs the firewall keeps are a lot more detailed than the conventional logs generated by the Apache server, so you can later take a look at them and decide if you need to take additional measures in order to boost the security of your script-driven websites.
ModSecurity in Web Hosting
ModSecurity is offered with every web hosting plan that we provide and it's switched on by default for every domain or subdomain that you include via your Hepsia Control Panel. In case it disrupts any of your apps or you'd like to disable it for some reason, you will be able to achieve that through the ModSecurity area of Hepsia with only a click. You could also use a passive mode, so the firewall will recognize potential attacks and maintain a log, but won't take any action. You'll be able to see comprehensive logs in the same section, including the IP address where the attack came from, exactly what the attacker aimed to do and at what time, what ModSecurity did, and so on. For max safety of our clients we use a set of commercial firewall rules combined with custom ones that are added by our system administrators.