It acts as an application IDS/firewall, preventing security bugs from being exploited.
It has the ability to check for shell codes (even polymorphic ones), buffer overflows, forbidden words, long URLs, long GET arguments, long POST arguments and long HEADERS in the HTTP requests. If the IDS engine detects a possible attack, the firewall engine stops the request.
The only Web server currently supported is Apache.
Apache Web server