RewriteEngine on
#RepeatLimit 0
RewriteCond %{REQUEST_FILENAME} /blog/print.cfm
RewriteRule .* - [R=403,L]
#BLOGCFC ENTRY
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^blog/(d{4}/d{1,2}/d{1,2}/.*)$ blog/index.cfm/$1 [QSA]
#BLOGCFC CATEGORY
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^blog/(w*)$ /blog/index.cfm/$1 [QSA]
#SQL Injection Protection --Read More www.cybercrime.gov
#Please uncomment to use these rules if below words does not conflict with your friendly-urls. You may modify accordingly.
#RewriteRule ^.*EXEC(@.*$ /includes/templates/404.html [L,F,NC]
#RewriteRule ^.*CAST(.*$ /includes/templates/404.html [L,F,NC]
#RewriteRule ^.*DECLARE.*$ /includes/templates/404.html [L,F,NC]
#RewriteRule ^.*DECLARE%20.*$ /includes/templates/404.html [L,F,NC]
#RewriteRule ^.*NVARCHAR.*$ /includes/templates/404.html [L,F,NC]
#RewriteRule ^.*sp_password.*$ /includes/templates/404.html [L,F,NC]
#RewriteRule ^.*%20xp_.*$ /includes/templates/404.html [L,F,NC]
# BLOCK unsupported HTTP methods
#RewriteCond %{REQUEST_METHOD} !^(GET|HEAD|OPTIONS|POST|PROPFIND|TRACE)$
#RewriteRule .* - [F]
#You may also want to block proxy attempts, if you see those in your logs:
# BLOCK attempts to use our server as a proxy, but allow absolute URIs (change example.com to your domain)
#RewriteCond %{THE_REQUEST} ^(GET|HEAD|POST)./?http:// [NC]
#RewriteCond %{THE_REQUEST} !^(GET|HEAD|POST)./?http://(www.)?example.com/
#RewriteRule .* - [F]
#if this call related to adminstrators or non rewrite folders, you can add more here.
RewriteCond %{REQUEST_URI} ^/(.*(CFIDE|cfide|CFFormGateway|jrunscripts|railo-context|mapping-tag|fckeditor|blog)).*$
RewriteRule ^(.*)$ - [NC,L]
#dealing with flash / flex communication
RewriteCond %{REQUEST_URI} ^/(.*(flashservices|flex2gateway|flex-remoting)).*$
RewriteRule ^(.*)$ - [NC,L]
#Images, css, javascript and docs, add your own extensions if needed.
RewriteCond %{REQUEST_URI} .(bmp|gif|jpe?g|png|css|js|txt|pdf|doc|xls|xml|ico)$
RewriteRule ^(.*)$ - [NC,L]
#The ColdBox index.cfm/{path_info} rules.
RewriteRule ^$ index.cfm [QSA]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^(.*)$ index.cfm/%{REQUEST_URI} [QSA,L]