Htaccess File

bastiegag/wordpress/master/.htaccess

HTTP_REFERER, HTTP_USER_AGENT, POST, REMOTE_ADDR, REQUEST_FILENAME, REQUEST_METHOD, REQUEST_URI
# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /bravad/
RewriteRule ^index.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /bravad/index.php [L]
</IfModule>

# END WordPress

# Protect wp-config
<files wp-config.php>
order allow,deny
deny from all
</files>

# Protect the .htaccess
<files .htaccess="">
order allow,deny
deny from all
</files>

<files ~ "^.*.([Hh][Tt][Aa])">
order allow,deny
deny from all
satisfy all
</files>

# Prevent directory browsing
Options All -Indexes

# Protect wp-login
#<Files wp-login.php>
#AuthUserFile ~/.htpasswd
#AuthName “Private access”
#AuthType Basic
#require user mmmsecretuser
#</Files>

# Prevent hotlinking
# YOU NEED TO CHANGE YOURDOMAIN FOR YOURDOMAIN 
#RewriteEngine on
#RewriteCond %{HTTP_REFERER} !^$
#RewriteCond %{HTTP_REFERER} !^http(s)?://(www.)?YourDomain [NC]
#RewriteRule .(jpg|jpeg|png|gif)$ - [NC,F,L]

# Stop Spammers
#RewriteEngine On
#RewriteCond %{REQUEST_METHOD} POST
#RewriteCond %{REQUEST_URI} .wp-comments-post.php*
#RewriteCond %{HTTP_REFERER} !.*yourblog.com.* [OR]
#RewriteCond %{HTTP_USER_AGENT} ^$
#RewriteRule (.*) ^http://%{REMOTE_ADDR}/$ [R=301,L]
Exit mobile version