ModSecurity is a powerful firewall for Apache web servers that is used to stop attacks towards web apps. It monitors the HTTP traffic to a particular Internet site in real time and prevents any intrusion attempts the moment it discovers them. The firewall relies on a set of rules to do this - for instance, attempting to log in to a script administrator area without success a few times triggers one rule, sending a request to execute a particular file that could result in accessing the Internet site triggers another rule, and so on. ModSecurity is one of the best firewalls out there and it will preserve even scripts which aren't updated often since it can prevent attackers from using known exploits and security holes. Very comprehensive data about every single intrusion attempt is recorded and the logs the firewall keeps are considerably more comprehensive than the standard logs generated by the Apache server, so you can later take a look at them and decide whether you need to take extra measures so as to boost the security of your script-driven websites.
ModSecurity in Shared Web Hosting
ModSecurity comes standard with all shared web hosting packages that we offer and it will be activated automatically for any domain or subdomain that you add/create inside your Hepsia hosting CP. The firewall has three different modes, so you can activate and disable it with a mouse click or set it to detection mode, so it will keep a log of all attacks, but it shall not do anything to prevent them. The log for each of your websites shall feature in-depth information which includes the nature of the attack, where it came from, what action was taken by ModSecurity, and so forth. The firewall rules we use are frequently updated and include both commercial ones that we get from a third-party security business and custom ones our system admins include in case that they detect a new type of attacks. In this way, the websites that you host here will be way more secure without any action expected on your end.