SetEnv PHP_VER 5_5
SetEnv SESSION_COOKIE_HTTPONLY 1
ErrorDocument 403 /403
ErrorDocument 404 /404
ErrorDocument 500 /500
Options -Indexes
Options -MultiViews
RewriteEngine on
# Common Hacks:
# proc/self/environ? no way!
RewriteCond %{QUERY_STRING} proc/self/environ [OR]
# Block out any script trying to set a mosConfig value through the URL
RewriteCond %{QUERY_STRING} mosConfig_[a-zA-Z_]{1,21}(=|%3D) [OR]
# Block out any script trying to base64_encode crap to send via URL
RewriteCond %{QUERY_STRING} base64_encode.*(.*) [OR]
# Block out any script that includes a <script> tag in URL
RewriteCond %{QUERY_STRING} (<|%3C).*script.*(>|%3E) [NC,OR]
# Block out any script trying to set a PHP GLOBALS variable via URL
RewriteCond %{QUERY_STRING} GLOBALS(=|[|%[0-9A-Z]{0,2}) [OR]
# Block out any script trying to modify a _REQUEST variable via URL
RewriteCond %{QUERY_STRING} _REQUEST(=|[|%[0-9A-Z]{0,2})
# Send all blocked request to homepage with 403 Forbidden error!
RewriteRule ^(.*)$ index.php [F,L]
# Don't access files:
<FilesMatch ".(htaccess|md)$">
Order Allow,Deny
Deny from all
</FilesMatch>
# SEO improvements
# RewriteCond %{HTTP_HOST} ^www.host [NC]
# RewriteRule ^(.*)$ http://host/$1 [R=301,L]
Redirect 301 /index /
RewriteCond %{REQUEST_URI} !index.php$
RewriteCond %{REQUEST_FILENAME} !-f
RewriteRule .* index.php [L,QSA]
