ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to an Internet site without affecting its functionality and when it identifies an intrusion attempt, it prevents it. The firewall furthermore keeps a more comprehensive log for the site visitors than any server does, so you'll manage to keep an eye on what is going on with your websites better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it stops attacks. For instance, it detects whether anyone is attempting to log in to the administrator area of a particular script several times or if a request is sent to execute a file with a specific command. In such cases these attempts set off the corresponding rules and the software hinders the attempts right away, then records comprehensive information about them within its logs. ModSecurity is among the most effective software firewalls on the market and it can protect your web applications against a large number of threats and vulnerabilities, particularly in case you don’t update them or their plugins frequently.

ModSecurity in Shared Website Hosting

ModSecurity is offered with every single shared website hosting package which we provide and it is activated by default for any domain or subdomain that you include through your Hepsia CP. In case it interferes with any of your applications or you'd like to disable it for whatever reason, you shall be able to do this through the ModSecurity section of Hepsia with merely a mouse click. You can also enable a passive mode, so the firewall will discover possible attacks and maintain a log, but won't take any action. You could see detailed logs in the same section, including the IP address where the attack originated from, exactly what the attacker tried to do and at what time, what ModSecurity did, etcetera. For maximum protection of our customers we use a collection of commercial firewall rules blended with custom ones that are provided by our system administrators.