working on it ...

Filters

Explore Public Snippets

Sort by

Found 2,044 snippets

    public by AbhishekGhosh  197  0  2  0

    WordPress, W3TC extra .htaccess

    WordPress, W3TC extra .htaccess: .htaccess
    ### stanza for brotli starts ###
    <IfModule mod_headers.c>
      # Serve brotli compressed CSS files if they exist and the client accepts brotli.
      RewriteCond %{HTTP:Accept-encoding} br
      RewriteCond %{REQUEST_FILENAME}\.br -s
      RewriteRule ^(.*)\.css $1\.css\.br [QSA]
    
      # Serve gzip compressed CSS files if they exist and the client accepts gzip.
      RewriteCond %{HTTP:Accept-encoding} gzip
      RewriteCond %{REQUEST_FILENAME}\.gz -s
      RewriteRule ^(.*)\.css $1\.css\.gz [QSA]
    
      # Serve brotli compressed JS files if they exist and the client accepts brotli.
      RewriteCond %{HTTP:Accept-encoding} br
      RewriteCond %{REQUEST_FILENAME}\.br -s
      RewriteRule ^(.*)\.js $1\.js\.br [QSA]
    
      # Serve gzip compressed JS files if they exist and the client accepts gzip.
      RewriteCond %{HTTP:Accept-encoding} gzip
      RewriteCond %{REQUEST_FILENAME}\.gz -s
      RewriteRule ^(.*)\.js $1\.js\.gz [QSA]
    
      # Serve correct content types, and prevent mod_deflate double gzip.
      RewriteRule \.css\.gz$ - [T=text/css,E=no-gzip:1]
      RewriteRule \.js\.gz$ - [T=text/javascript,E=no-gzip:1]
      RewriteRule \.css\.br$ - [T=text/css,E=no-gzip:1]
      RewriteRule \.js\.br$ - [T=text/javascript,E=no-gzip:1]
    
      <FilesMatch "(\.js\.gz|\.css\.gz)$">
        # Serve correct encoding type.
        Header set Content-Encoding gzip
        # Force proxies to cache gzipped & non-gzipped css/js files separately.
        Header append Vary Accept-Encoding
      </FilesMatch>
      <FilesMatch "(\.js\.br|\.css\.br)$">
        # Serve correct encoding type.
        Header set Content-Encoding br
        # Force proxies to cache gzipped & non-gzipped css/js files separately.
        Header append Vary Accept-Encoding
      </FilesMatch>
    </IfModule>
    ### stanza for brotli ends ###
    
    

    public by afelicioni  362689  0  4  0

    second level domain trick

    second level domain trick: .htaccess
    RewriteEngine On
    Options +FollowSymlinks
    RewriteBase /
    
    #RewriteCond %{HTTP_HOST} !www.dns.it
    #RewriteCond %{HTTP_HOST} (.*).dns.it
    #RewriteRule ^(.*)$ %1/$1
    
    RewriteCond %{HTTP_HOST} whois.dns.it
    RewriteCond %{REQUEST_URI} !_whois/
    RewriteRule ^(.*)$ _whois/$1 [L]
    
    RewriteCond %{HTTP_HOST} tld-info.dns.it
    RewriteCond %{REQUEST_URI} !_tld-info/
    RewriteRule ^(.*)$ _tld-info/$1 [L]
    
    RewriteCond %{HTTP_HOST} tld.dns.it
    RewriteCond %{REQUEST_URI} !_tld-info/
    RewriteRule ^(.*)$ _tld-info/$1 [L]
    
    

    public by enlacee  1496  0  3  0

    how to config access for IP ADDRESS (wordpress)

    how to config access for IP ADDRESS (wordpress): .htaccess
    # BEGIN WordPress
    <IfModule mod_rewrite.c>
    RewriteEngine On
    RewriteBase /
    RewriteRule ^index\.php$ - [L]
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteRule . /index.php [L]
    
    ## only acces to this IP HOUSE
    RewriteCond %{REQUEST_URI} ^(.*)?wp-login\.php(.*)$ [OR]
    RewriteCond %{REQUEST_URI} ^(.*)?wp-admin$
    RewriteCond %{REMOTE_ADDR} !^190\.238\.253\.9$
    RewriteCond %{REMOTE_ADDR} !^190\.233\.226\.164$
    RewriteRule ^(.*)$ - [R=404,L]
    
    ## no edit config
    <files wp-config.php>
    order allow,deny
    deny from all
    </files>
    
    </IfModule>
    
    # END WordPress
    
    
    

    public by Aleksandar Popovic  1601  0  3  0

    Codeigniter .htaccess

    Codeigniter .htaccess: .htaccess
    <IfModule mod_rewrite.c>
      RewriteEngine On
      # !IMPORTANT! Set your RewriteBase here and don't forget trailing and leading
      #  slashes.
      # If your page resides at
      #  http://www.example.com/mypage/test1
      # then use
      # RewriteBase /mypage/test1/
      RewriteBase /
      RewriteCond %{REQUEST_FILENAME} !-f
      RewriteCond %{REQUEST_FILENAME} !-d
      RewriteRule ^(.*)$ index.php?/$1 [L]
    </IfModule>
     
    <IfModule !mod_rewrite.c>
      # If we don't have mod_rewrite installed, all 404's
      # can be sent to index.php, and everything works as normal.
      # Submitted by: ElliotHaughin
     
      ErrorDocument 404 /index.php
    </IfModule>
    
    

    public by siroken3  710  0  3  0

    ruby-2.0.0-p195 + fluentd 0.10.35の組み合わせでログの重複現象が確認できた fluent.conf:

    ruby-2.0.0-p195 + fluentd 0.10.35の組み合わせでログの重複現象が確認できた fluent.conf: : gistfile1.apacheconf
    ## built-in TCP input
    ## $ echo <json> | fluent-cat <tag>
    <source>
      type forward
    </source>
    
    # HTTP input
    # http://localhost:8888/<tag>?json=<json>
    <source>
      type http
      port 8888
    </source>
    
    <source>
      type tail
      format ltsv
      time_key time
      path /var/log/apache2/project/project.acc.log
      pos_file /var/log/fluent/log.pos
      tag apache.access
    </source>
    
    <source>
      type tail
      format json
      path /opt/xxx/fs/project/contents/app/tmp/logs/json.log
      pos_file /var/log/fluent/app-log.pos
      tag app.log
    </source>
    
    # Listen DRb for debug
    <source>
      type debug_agent
      port 24230
    </source>
    
    <match apache.access>
        type copy
        <store>
        type file
        path /opt/xxx/fs/fluent/project/apache.local.acc
        </store>
        <store>
        type forward
        buffer_chunk_limit 8m
        buffer_queue_limit 128
        retry_limit 16
        flush_interval 1s
        flush_at_shutdown
        buffer_type file
        buffer_path /var/log/fluent/buffer/project.acc
        <server>
          name lg001-01
          host lg001
          port 24224
          weight 50
        </server>
    #    <server>
    #      name lg001-02
    #      host lg001
    #      port 24225
    #      weight 60
    #    </server>
    #    <server>
    #      name lg001-03
    #      host lg001
    #      port 24226
    #      weight 60
    #    </server>
    #    <server>
    #      name lg001-04
    #      host lg001
    #      port 24227
    #      weight 60
    #    </server>
        <server>
          name lg002-01
          host lg002
          port 24224
          weight 50
        </server>
    #    <server>
    #      name lg002-02
    #      host lg002
    #      port 24225
    #      weight 60
    #    </server>
    #    <server>
    #      name lg002-03
    #      host lg002
    #      port 24226
    #      weight 60
    #    </server>
    #    <server>
    #      name lg002-04
    #      host lg002
    #      port 24227
    #      weight 60
    #    </server>
        <secondary>
          type file
          path /var/log/fluent/project/forward-failed/project.acc
        </secondary>
        </store>
    </match>
    
    <match app.log>
      type forward
        buffer_chunk_limit 8m
        buffer_queue_limit 128
        retry_limit 16
        flush_interval 1s
        flush_at_shutdown
        buffer_type file
        buffer_path /var/log/fluent/buffer/app.log
        <server>
          name lg001-01
          host lg001
          port 24224
          weight 50
        </server>
    #    <server>
    #      name lg001-02
    #      host lg001
    #      port 24225
    #    </server>
    #    <server>
    #      name lg001-03
    #      host lg001
    #      port 24226
    #      weight 10
    #    </server>
        <server>
          name lg002-01
          host lg002
          port 24224
          weight 50
        </server>
    #    <server>
    #      name lg002-02
    #      host lg002
    #      port 24225
    #    </server>
    #    <server>
    #      name lg002-03
    #      host lg002
    #      port 24226
    #      weight 10
    #    </server>
        <secondary>
          type file
          path /var/log/fluent/project/forward-failed/app.log
        </secondary>
    </match>
    
    ## match tag=debug.** and dump to console
    <match debug.**>
      type stdout
    </match>
    
    ## match not matched logs and write to file
    <match **>
      type file
      path /var/log/fluent/else/else
    </match>
    
    

    external by gi-joey  2  0  1  0

    Gzip encoding and Expire headers for Wordpress

    Gzip encoding and Expire headers for Wordpress: .htaccess
    <IfModule mod_deflate.c>
    
      # Compress HTML, CSS, JavaScript, Text, XML and fonts
      AddOutputFilterByType DEFLATE application/javascript
      AddOutputFilterByType DEFLATE application/rss+xml
      AddOutputFilterByType DEFLATE application/vnd.ms-fontobject
      AddOutputFilterByType DEFLATE application/x-font
      AddOutputFilterByType DEFLATE application/x-font-opentype
      AddOutputFilterByType DEFLATE application/x-font-otf
      AddOutputFilterByType DEFLATE application/x-font-truetype
      AddOutputFilterByType DEFLATE application/x-font-ttf
      AddOutputFilterByType DEFLATE application/x-javascript
      AddOutputFilterByType DEFLATE application/xhtml+xml
      AddOutputFilterByType DEFLATE application/xml
      AddOutputFilterByType DEFLATE font/opentype
      AddOutputFilterByType DEFLATE font/otf
      AddOutputFilterByType DEFLATE font/ttf
      AddOutputFilterByType DEFLATE image/svg+xml
      AddOutputFilterByType DEFLATE image/x-icon
      AddOutputFilterByType DEFLATE text/css
      AddOutputFilterByType DEFLATE text/html
      AddOutputFilterByType DEFLATE text/javascript
      AddOutputFilterByType DEFLATE text/plain
      AddOutputFilterByType DEFLATE text/xml
     
      # Remove browser bugs (only needed for really old browsers)
      BrowserMatch ^Mozilla/4 gzip-only-text/html
      BrowserMatch ^Mozilla/4\.0[678] no-gzip
      BrowserMatch \bMSIE !no-gzip !gzip-only-text/html
      Header append Vary User-Agent
    </IfModule>
    <IfModule mod_expires.c>
      ExpiresActive on
    
    # Perhaps better to whitelist expires rules? Perhaps.
      ExpiresDefault                          "access plus 1 month"
    
    # Data
      ExpiresByType text/xml                  "access plus 0 seconds"
      ExpiresByType application/xml           "access plus 0 seconds"
      ExpiresByType application/json          "access plus 0 seconds"
    
    # Favicon (cannot be renamed)
      ExpiresByType image/x-icon              "access plus 1 week"
    
    # Media: images, video, audio
      ExpiresByType image/gif                 "access plus 1 month"
      ExpiresByType image/png                 "access plus 1 month"
      ExpiresByType image/jpeg                "access plus 1 month"
      ExpiresByType video/ogg                 "access plus 1 month"
      ExpiresByType audio/ogg                 "access plus 1 month"
      ExpiresByType video/mp4                 "access plus 1 month"
      ExpiresByType video/webm                "access plus 1 month"
    
    # Webfonts
      ExpiresByType application/x-font-ttf    "access plus 1 month"
      ExpiresByType font/opentype             "access plus 1 month"
      ExpiresByType application/x-font-woff   "access plus 1 month"
      ExpiresByType image/svg+xml             "access plus 1 month"
      ExpiresByType application/vnd.ms-fontobject "access plus 1 month"
    
    # CSS and JavaScript
      ExpiresByType text/css                  "access plus 1 year"
      ExpiresByType application/javascript    "access plus 1 year"
    
    </IfModule>
    
    

    external by ArhStrAngeR  4  0  1  0

    UPDATE 2019/07: Perfect .htaccess file for highspeed and security. You can use it for every WordPress-Website without problems. Highspeed and Security - testet on hundreds of Websites. If you are using a WordPress Multisite, change the last part of thi...

    UPDATE 2019/07: Perfect .htaccess file for highspeed and security. You can use it for every WordPress-Website without problems. Highspeed and Security - testet on hundreds of Websites. If you are using a WordPress Multisite, change the last part of this file.: .htaccess
    ########################################################################
    # OPTIMAL .htaccess FILE FOR SPEED AND SECURITY @Version 2019
    # ----------------------------------------------------------------------
    # @Author: Andreas Hecht
    # @Author URI: https://andreas-hecht.com
    # License: GNU General Public License v2 or later
    # License URI: http://www.gnu.org/licenses/gpl-2.0.html
    ########################################################################
    
    
    # ----------------------------------------------------------------------
    # Rewrite from HTTP to HTTPS - if you want to use it, comment it out
    # ----------------------------------------------------------------------
    
    #<IfModule mod_rewrite.c>
    #RewriteEngine On
    #RewriteCond %{HTTPS} !=on
    #RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
    #</IfModule>
    
    # ----------------------------------------------------------------------
    # | Activate CORS                                                  
    # ----------------------------------------------------------------------
    
    <IfModule mod_headers.c>
        <FilesMatch "\.(ttf|ttc|otf|eot|woff|woff2|font.css|css|js|gif|png|jpe?g|svg|svgz|ico|webp)$">
            Header set Access-Control-Allow-Origin "*"
        </FilesMatch>
    </IfModule>
    
    # -----------------------------------------------------------------------
    # | 404 Fix: Block Nuisance Requests for Non-Existent Files - New in 2018  
    #   https://perishablepress.com/block-nuisance-requests - @Update 2019
    # -----------------------------------------------------------------------
    
    <IfModule mod_alias.c>
    	RedirectMatch 403 (?i)\.php\.suspected
    	RedirectMatch 403 (?i)apple-app-site-association
    	RedirectMatch 403 (?i)/autodiscover/autodiscover.xml
    </IfModule>
    
    # ----------------------------------------------------------------------
    # | Compressing and Caching - Version 2017                                                    |
    # ----------------------------------------------------------------------
    
    # Serve resources with far-future expires headers.
    #
    # (!) If you don't control versioning with filename-based
    # cache busting, you should consider lowering the cache times
    # to something like one week.
    #
    # https://httpd.apache.org/docs/current/mod/mod_expires.html
    
    <IfModule mod_expires.c>
        ExpiresActive on
        ExpiresDefault                                      "access plus 1 month"
    
      # CSS
        ExpiresByType text/css                              "access plus 1 year"
    
      # Data interchange
        ExpiresByType application/atom+xml                  "access plus 1 hour"
        ExpiresByType application/rdf+xml                   "access plus 1 hour"
        ExpiresByType application/rss+xml                   "access plus 1 hour"
    
        ExpiresByType application/json                      "access plus 0 seconds"
        ExpiresByType application/ld+json                   "access plus 0 seconds"
        ExpiresByType application/schema+json               "access plus 0 seconds"
        ExpiresByType application/vnd.geo+json              "access plus 0 seconds"
        ExpiresByType application/xml                       "access plus 0 seconds"
        ExpiresByType text/xml                              "access plus 0 seconds"
    
      # Favicon (cannot be renamed!) and cursor images
        ExpiresByType image/vnd.microsoft.icon              "access plus 1 week"
        ExpiresByType image/x-icon                          "access plus 1 week"
    
      # HTML - Behält die Website eine Stunde im Cache, neues wird erst nach Ablauf einer Stunde
      # angezeigt. Wenn nicht gewuenscht, bei 3600 eine Null eintragen
        ExpiresByType text/html                             "access plus 3600 seconds"
    
      # JavaScript
        ExpiresByType application/javascript                "access plus 1 year"
        ExpiresByType application/x-javascript              "access plus 1 year"
        ExpiresByType text/javascript                       "access plus 1 year"
    
      # Manifest files
        ExpiresByType application/manifest+json             "access plus 1 week"
        ExpiresByType application/x-web-app-manifest+json   "access plus 0 seconds"
        ExpiresByType text/cache-manifest                   "access plus 0 seconds"
    
      # Media files
        ExpiresByType audio/ogg                             "access plus 1 month"
        ExpiresByType image/bmp                             "access plus 1 month"
        ExpiresByType image/gif                             "access plus 1 month"
        ExpiresByType image/jpeg                            "access plus 1 month"
        ExpiresByType image/png                             "access plus 1 month"
        ExpiresByType image/svg+xml                         "access plus 1 month"
        ExpiresByType image/webp                            "access plus 1 month"
        ExpiresByType video/mp4                             "access plus 1 month"
        ExpiresByType video/ogg                             "access plus 1 month"
        ExpiresByType video/webm                            "access plus 1 month"
    
      # Web fonts
    
        # Embedded OpenType (EOT)
        ExpiresByType application/vnd.ms-fontobject         "access plus 1 month"
        ExpiresByType font/eot                              "access plus 1 month"
    
        # OpenType
        ExpiresByType font/opentype                         "access plus 1 month"
    
        # TrueType
        ExpiresByType application/x-font-ttf                "access plus 1 month"
    
        # Web Open Font Format (WOFF) 1.0
        ExpiresByType application/font-woff                 "access plus 1 month"
        ExpiresByType application/x-font-woff               "access plus 1 month"
        ExpiresByType font/woff                             "access plus 1 month"
    
        # Web Open Font Format (WOFF) 2.0
        ExpiresByType application/font-woff2                "access plus 1 month"
    
      # Other
        ExpiresByType text/x-cross-domain-policy            "access plus 1 week"
    </IfModule>
    
    <IfModule mod_deflate.c>
    # Insert filters / compress text, html, javascript, css, xml:
    AddOutputFilterByType DEFLATE text/plain
    AddOutputFilterByType DEFLATE text/html
    AddOutputFilterByType DEFLATE text/xml
    AddOutputFilterByType DEFLATE text/css
    AddOutputFilterByType DEFLATE text/vtt 
    AddOutputFilterByType DEFLATE text/x-component
    AddOutputFilterByType DEFLATE application/xml
    AddOutputFilterByType DEFLATE application/xhtml+xml
    AddOutputFilterByType DEFLATE application/rss+xml
    AddOutputFilterByType DEFLATE application/js
    AddOutputFilterByType DEFLATE application/javascript
    AddOutputFilterByType DEFLATE application/x-javascript
    AddOutputFilterByType DEFLATE application/x-httpd-php
    AddOutputFilterByType DEFLATE application/x-httpd-fastphp
    AddOutputFilterByType DEFLATE application/atom+xml 
    AddOutputFilterByType DEFLATE application/json
    AddOutputFilterByType DEFLATE application/ld+json 
    AddOutputFilterByType DEFLATE application/vnd.ms-fontobject 
    AddOutputFilterByType DEFLATE application/x-font-ttf
    AddOutputFilterByType DEFLATE application/font-woff2
    AddOutputFilterByType DEFLATE application/x-font-woff
    AddOutputFilterByType DEFLATE application/x-web-app-manifest+json font/woff
    AddOutputFilterByType DEFLATE font/woff 
    AddOutputFilterByType DEFLATE font/opentype
    AddOutputFilterByType DEFLATE image/svg+xml
    AddOutputFilterByType DEFLATE image/x-icon 
    
    # Exception: Images
    SetEnvIfNoCase REQUEST_URI \.(?:gif|jpg|jpeg|png|svg)$ no-gzip dont-vary
    
    # Drop problematic browsers
    BrowserMatch ^Mozilla/4 gzip-only-text/html
    BrowserMatch ^Mozilla/4\.0[678] no-gzip
    BrowserMatch \bMSI[E] !no-gzip !gzip-only-text/html
    
    # Make sure proxies don't deliver the wrong content
    Header append Vary User-Agent env=!dont-vary
    </IfModule>
    
    #Alternative caching using Apache's "mod_headers", if it's installed.
    #Caching of common files - ENABLED
    <IfModule mod_headers.c>
    <FilesMatch "\.(ico|pdf|flv|swf|js|css|gif|png|jpg|jpeg|txt)$">
    Header set Cache-Control "max-age=2592000, public"
    </FilesMatch>
    </IfModule>
    
    <IfModule mod_headers.c>
      <FilesMatch "\.(js|css|xml|gz)$">
        Header append Vary Accept-Encoding
      </FilesMatch>
    </IfModule>
    
    # Set Keep Alive Header
    <IfModule mod_headers.c>
        Header set Connection keep-alive
    </IfModule>
    
    # If your server don't support ETags deactivate with "None" (and remove header)
    <IfModule mod_expires.c> 
      <IfModule mod_headers.c> 
        Header unset ETag 
      </IfModule> 
      FileETag None 
    </IfModule>
    
    <IfModule mod_headers.c>
    <FilesMatch ".(js|css|xml|gz|html|woff|woff2|ttf)$">
    Header append Vary: Accept-Encoding
    </FilesMatch>
    </IfModule>
    
    # ----------------------------------------------------------------------
    # | 6G Firewall for Security - Do not change this part @Update 2019 / 2
    # ----------------------------------------------------------------------
    # 6G FIREWALL/BLACKLIST - 2019
    # @ https://perishablepress.com/6g/
    
    # 6G:[QUERY STRINGS]
    <IfModule mod_rewrite.c>
    	RewriteEngine On
    	RewriteCond %{QUERY_STRING} (eval\() [NC,OR]
    	RewriteCond %{QUERY_STRING} (127\.0\.0\.1) [NC,OR]
    	RewriteCond %{QUERY_STRING} ([a-z0-9]{2000,}) [NC,OR]
    	RewriteCond %{QUERY_STRING} (javascript:)(.*)(;) [NC,OR]
    	RewriteCond %{QUERY_STRING} (base64_encode)(.*)(\() [NC,OR]
    	RewriteCond %{QUERY_STRING} (GLOBALS|REQUEST)(=|\[|%) [NC,OR]
    	RewriteCond %{QUERY_STRING} (<|%3C)(.*)script(.*)(>|%3) [NC,OR]
    	RewriteCond %{QUERY_STRING} (\\|\.\.\.|\.\./|~|`|<|>|\|) [NC,OR]
    	RewriteCond %{QUERY_STRING} (boot\.ini|etc/passwd|self/environ) [NC,OR]
    	RewriteCond %{QUERY_STRING} (thumbs?(_editor|open)?|tim(thumb)?)\.php [NC,OR]
    	RewriteCond %{QUERY_STRING} (\'|\")(.*)(drop|insert|md5|select|union) [NC]
    	RewriteRule .* - [F]
    </IfModule>
    
    # 6G:[REQUEST METHOD]
    <IfModule mod_rewrite.c>
    	RewriteCond %{REQUEST_METHOD} ^(connect|debug|move|put|trace|track) [NC]
    	RewriteRule .* - [F]
    </IfModule>
    
    # 6G:[REFERRERS]
    <IfModule mod_rewrite.c>
    	RewriteCond %{HTTP_REFERER} ([a-z0-9]{2000,}) [NC,OR]
    	RewriteCond %{HTTP_REFERER} (semalt.com|todaperfeita) [NC]
    	RewriteRule .* - [F]
    </IfModule>
    
    # 6G:[REQUEST STRINGS]
    <IfModule mod_alias.c>
    	RedirectMatch 403 (?i)([a-z0-9]{2000,})
    	RedirectMatch 403 (?i)(https?|ftp|php):/
    	RedirectMatch 403 (?i)(base64_encode)(.*)(\()
    	RedirectMatch 403 (?i)(=\\\'|=\\%27|/\\\'/?)\.
    	RedirectMatch 403 (?i)/(\$(\&)?|\*|\"|\.|,|&|&amp;?)/?$
    	RedirectMatch 403 (?i)(\{0\}|\(/\(|\.\.\.|\+\+\+|\\\"\\\")
    	RedirectMatch 403 (?i)(~|`|<|>|:|;|,|%|\\|\{|\}|\[|\]|\|)
    	RedirectMatch 403 (?i)/(=|\$&|_mm|cgi-|muieblack)
    	RedirectMatch 403 (?i)(&pws=0|_vti_|\(null\)|\{\$itemURL\}|echo(.*)kae|etc/passwd|eval\(|self/environ)
    	RedirectMatch 403 (?i)\.(aspx?|bash|bak?|cfg|cgi|dll|exe|git|hg|ini|jsp|log|mdb|out|sql|svn|swp|tar|rar|rdf)$
    	RedirectMatch 403 (?i)/(^$|(wp-)?config|mobiquo|phpinfo|shell|sqlpatch|thumb|thumb_editor|thumbopen|timthumb|webshell)\.php
    </IfModule>
    
    # 6G:[USER AGENTS]
    <IfModule mod_setenvif.c>
    	SetEnvIfNoCase User-Agent ([a-z0-9]{2000,}) bad_bot
    	SetEnvIfNoCase User-Agent (archive.org|binlar|casper|checkpriv|choppy|clshttp|cmsworld|diavol|dotbot|extract|feedfinder|flicky|g00g1e|harvest|heritrix|httrack|kmccrew|loader|miner|nikto|nutch|planetwork|postrank|purebot|pycurl|python|seekerspider|siclab|skygrid|sqlmap|sucker|turnit|vikspider|winhttp|xxxyy|youda|zmeu|zune) bad_bot
    	
    	# Apache < 2.3
    	<IfModule !mod_authz_core.c>
    		Order Allow,Deny
    		Allow from all
    		Deny from env=bad_bot
    	</IfModule>
    
    	# Apache >= 2.3
    	<IfModule mod_authz_core.c>
    		<RequireAll>
    			Require all Granted
    			Require not env bad_bot
    		</RequireAll>
    	</IfModule>
    </IfModule>
    
    # 6G:[BAD IPS]
    <Limit GET HEAD OPTIONS POST PUT>
    	Order Allow,Deny
    	Allow from All
    	# uncomment/edit/repeat next line to block IPs
    	# Deny from 123.456.789
    </Limit>
    
    # ----------------------------------------------------------------------
    #   Block WordPress files from outside access
    # ----------------------------------------------------------------------	
    
    # No access to the install.php
    <files install.php>
    Order allow,deny
    Deny from all
    </files>
     
    # No access to the wp-config.php 
    <files wp-config.php>
    Order allow,deny
    Deny from all
    </files>
     
    # No access to the readme.html
    <files readme.html>
     Order Allow,Deny
     Deny from all
     Satisfy all
    </Files>
     
    # No access to the liesmich.html for DE Edition
    <Files liesmich.html>
     Order Allow,Deny
     Deny from all
     Satisfy all
    </Files>
     
    # No error log access 
    <files error_log>
    Order allow,deny
    Deny from all
    </files>
    
    #No access to the .htaccess und .htpasswd
    <FilesMatch "(\.htaccess|\.htpasswd)">
      Order deny,allow
      Deny from all
    </FilesMatch>
    
    # Block access to includes folder
    <IfModule mod_rewrite.c>
    RewriteEngine On
    RewriteBase /
    RewriteRule ^wp-admin/includes/ - [F,L]
    RewriteRule !^wp-includes/ - [S=3]
    RewriteRule ^wp-includes/[^/]+\.php$ - [F,L]
    RewriteRule ^wp-includes/js/tinymce/langs/.+\.php - [F,L]
    RewriteRule ^wp-includes/theme-compat/ - [F,L]
    </IfModule>
    
    # ----------------------------------------------------------------------
    # | Blocking the »ReallyLongRequest« Bandit - New in 2018  
    #   https://perishablepress.com/blocking-reallylongrequest-bandit/
    # ----------------------------------------------------------------------
    
    <IfModule mod_rewrite.c>
        RewriteCond %{REQUEST_METHOD} .* [NC]
        RewriteCond %{THE_REQUEST}  (YesThisIsAReallyLongRequest|ScanningForResearchPurpose) [NC,OR]
        RewriteCond %{QUERY_STRING} (YesThisIsAReallyLongRequest|ScanningForResearchPurpose) [NC]
        RewriteRule .* - [F,L]
    </IfModule>
    
    # --------------------------------------------------------------------------------------------
    #   Ultimate hotlink protection - IMPORTANT: Change »?domain\« in line 361 to your domain name
    #   Example: ?andreas-hecht\ ### if you do not use https, change https in line 361 to http
    # --------------------------------------------------------------------------------------------
    
    
    #<IfModule mod_rewrite.c>
    # RewriteEngine on
    # RewriteCond %{HTTP_REFERER}     !^$
    # RewriteCond %{REQUEST_FILENAME} -f
    # RewriteCond %{REQUEST_FILENAME} \.(gif|jpe?g?|png)$           [NC]
    # RewriteCond %{HTTP_REFERER}     !^https?://([^.]+\.)?domain\. [NC]
    # RewriteRule \.(gif|jpe?g?|png)$                             - [F,NC,L]
    #</ifModule>
    
    # ----------------------------------------------------------------------
    #   Protect your WordPress Login with HTTP Authentification
    # ----------------------------------------------------------------------
    
    # If you want to use it, comment it out and set your path to .htpasswd
    #<Files wp-login.php>
    #AuthName "Admin-Bereich"
    #AuthType Basic
    #AuthUserFile /usr/local/www/apache24/your-path/your-domain.com/.htpasswd 
    #require valid-user
    #</Files>
    
    # ----------------------------------------------------------------------
    #   Switch off the security risk XML-RPC interface completely
    # ----------------------------------------------------------------------
    
    ### @see https://digwp.com/2009/06/xmlrpc-php-security/
    
    <Files xmlrpc.php>
     Order Deny,Allow
     Deny from all
    </Files>
    
    
    # -----------------------------------------------------------------------------
    #  HTTP SECURITY HEADER | Test on: https://securityheaders.com | UPDATE 2019
    # -----------------------------------------------------------------------------
    
    ### @see https://scotthelme.co.uk/hardening-your-http-response-headers
    ### UPDATE 2019
    
    ## No-Referrer-Header
    <IfModule mod_headers.c>
        Header set Referrer-Policy "no-referrer"
    </IfModule>
    
    ## X-FRAME-OPTIONS-Header
    <IfModule mod_headers.c>
        Header set X-Frame-Options "sameorigin"
    </IfModule>
    
    ## X-XSS-PROTECTION-Header
    <IfModule mod_headers.c>
        Header set X-XSS-Protection "1; mode=block"
    </IfModule>
    
    ## X-Content-Type-Options-Header
    <IfModule mod_headers.c>
        Header set X-Content-Type-Options "nosniff"
    </IfModule>
    
    ## Strict-Transport-Security-Header - if you are using https on your website, comment this block out
    #<IfModule mod_headers.c>
    #   Header set Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
    #</IfModule>
    
    ## This prevents that false issued certificates for this website can be used unnoticed. (Experimental)
    ## @see https://tools.ietf.org/html/draft-ietf-httpbis-expect-ct-02
    <IfModule mod_headers.c>
       Header set Expect-CT "enforce, max-age=21600"	
    </IfModule>
    
    # ----------------------------------------------------------------------
    # The original WordPress Rewrite Rules - Do not change anything here, 
    # except you are using a WordPress Multisite
    # ----------------------------------------------------------------------
    
    # BEGIN WordPress
    <IfModule mod_rewrite.c>
    RewriteEngine On
    RewriteBase /
    RewriteRule ^index\.php$ - [L]
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteRule . /index.php [L]
    </IfModule>
    # END WordPress
    
    

    external by lilumi  1  0  1  0

    Increase Upload file size in .htaccess

    Increase Upload file size in .htaccess: .htaccess
    php_value upload_max_filesize 1024M
    php_value post_max_size 1024M
    php_value memory_limit 256M
    php_value max_execution_time 300
    php_value max_input_time 300
    
    

    external by waiting  3  0  1  0

    .htaccess: WordPress Yoast SEO Sitemap Fix

    .htaccess: WordPress Yoast SEO Sitemap Fix: .htaccess
    # WordPress SEO - XML Sitemap Rewrite Fix
    RewriteEngine On
    RewriteBase /
    RewriteRule ^sitemap_index.xml$ /index.php?sitemap=1 [L]
    RewriteRule ^locations.kml$ /index.php?sitemap=wpseo_local_kml [L]
    RewriteRule ^geo_sitemap.xml$ /index.php?sitemap=geo [L]
    RewriteRule ^([^/]+?)-sitemap([0-9]+)?.xml$ /index.php?sitemap=$1&sitemap_n=$2 [L]
    RewriteRule ^([a-z]+)?-?sitemap.xsl$ /index.php?xsl=$1 [L]
    # END WordPress SEO - XML Sitemap Rewrite Fix
    
    
    

    external by IvanKolechkin  3  0  1  0

    ModX: Мультиязычность .htaccess

    ModX: Мультиязычность .htaccess: .htaccess
    #Мультиязычность
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteRule ^(ru|en|de)/favicon.ico$ favicon.ico [L,QSA]
    
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteRule ^(ru|en|de)/assets(.*)$ assets$2 [L,QSA]
    
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteRule ^(ru|en|de)?/?(.*)$ index.php?cultureKey=$1&q=$2 [L,QSA]
    #Конец
    
    
    • Public Snippets
    • Channels Snippets