ModSecurity is a powerful firewall for Apache web servers that's used to stop attacks towards web apps. It monitors the HTTP traffic to a particular website in real time and stops any intrusion attempts the instant it detects them. The firewall relies on a set of rules to do this - as an example, trying to log in to a script admin area unsuccessfully many times triggers one rule, sending a request to execute a particular file that may result in accessing the Internet site triggers another rule, and so forth. ModSecurity is one of the best firewalls available on the market and it will protect even scripts that aren't updated frequently as it can prevent attackers from employing known exploits and security holes. Incredibly thorough data about every single intrusion attempt is recorded and the logs the firewall keeps are far more comprehensive than the regular logs provided by the Apache server, so you could later analyze them and decide if you need to take extra measures so as to increase the security of your script-driven Internet sites.
ModSecurity in Cloud Hosting
ModSecurity comes by default with all cloud hosting packages that we supply and it shall be switched on automatically for any domain or subdomain which you add/create inside your Hepsia hosting Control Panel. The firewall has 3 different modes, so you'll be able to switch on and disable it with a mouse click or set it to detection mode, so it'll maintain a log of all attacks, but it shall not do anything to prevent them. The log for each of your Internet sites shall contain detailed information including the nature of the attack, where it originated from, what action was taken by ModSecurity, and so on. The firewall rules we use are frequently updated and incorporate both commercial ones that we get from a third-party security company and custom ones which our system admins include in the event that they detect a new kind of attacks. In this way, the Internet sites you host here shall be much more protected without any action needed on your end.