ModSecurity is a plugin for Apache web servers that acts as a web application layer firewall. It is used to prevent attacks towards script-driven websites by using security rules that contain specific expressions. This way, the firewall can block hacking and spamming attempts and shield even sites which are not updated often. For instance, a number of failed login attempts to a script administrative area or attempts to execute a particular file with the purpose to get access to the script will trigger specific rules, so ModSecurity shall block these activities the second it detects them. The firewall is quite efficient because it monitors the whole HTTP traffic to a website in real time without slowing it down, so it will be able to stop an attack before any harm is done. It also keeps a very detailed log of all attack attempts that contains more information than typical Apache logs, so you can later check out the data and take extra measures to enhance the security of your sites if necessary.
ModSecurity in Shared Hosting
ModSecurity comes standard with all shared hosting packages that we provide and it shall be activated automatically for any domain or subdomain which you add/create in your Hepsia hosting CP. The firewall has three different modes, so you could switch on and deactivate it with just a mouse click or set it to detection mode, so it'll maintain a log of all attacks, but it will not do anything to prevent them. The log for any of your websites will feature comprehensive info which includes the nature of the attack, where it originated from, what action was taken by ModSecurity, etc. The firewall rules that we use are frequently updated and consist of both commercial ones that we get from a third-party security firm and custom ones our system admins include in case that they detect a new type of attacks. This way, the sites you host here will be much more secure with no action required on your end.