ModSecurity is an effective firewall for Apache web servers that's used to prevent attacks towards web apps. It monitors the HTTP traffic to a particular site in real time and prevents any intrusion attempts the instant it discovers them. The firewall relies on a set of rules to do this - as an example, attempting to log in to a script administrator area unsuccessfully a few times triggers one rule, sending a request to execute a specific file which may result in getting access to the website triggers a different rule, etcetera. ModSecurity is amongst the best firewalls on the market and it'll preserve even scripts which aren't updated frequently because it can prevent attackers from employing known exploits and security holes. Very thorough data about every intrusion attempt is recorded and the logs the firewall maintains are a lot more comprehensive than the standard logs generated by the Apache server, so you could later take a look at them and decide whether you need to take additional measures in order to enhance the security of your script-driven Internet sites.
ModSecurity in Semi-dedicated Servers
ModSecurity is part of our semi-dedicated server solutions and if you choose to host your sites with our company, there shall not be anything special you will have to do as the firewall is switched on by default for all domains and subdomains you add via your hosting Control Panel. If required, you can disable ModSecurity for a certain website or switch on the so-called detection mode in which case the firewall will still work and record data, but shall not do anything to prevent potential attacks against your sites. Thorough logs shall be accessible within your CP and you will be able to see what sort of attacks happened, what security rules were triggered and how the firewall handled the threats, what Internet protocol addresses the attacks originated from, etcetera. We employ 2 sorts of rules on our servers - commercial ones from a business which operates in the field of web security, and custom made ones that our administrators occasionally include to respond to newly discovered threats promptly.