phaziz/ConstructrCMS-3/master/.htaccess - Htaccess File

phaziz/ConstructrCMS-3/master/.htaccess

<ifModule mod_alias.c>
RedirectMatch 403 /($|*)/?$
RedirectMatch 403 (?i)(https?|ftp|php):/
RedirectMatch 403 (?i)("|.|_|&|&amp)$
RedirectMatch 403 (?i)(=\'|=\%27|/\'/?).
RedirectMatch 403 (?i)/(author-panel|submit-articles)/?$
RedirectMatch 403 (?i)(,|//|)+|/,/|{0}|(/(|..|+++|||\"\")
RedirectMatch 403 (?i)/uploads/([0-9]+)/([0-9]+)/(cache|cached|wp-opt|wp-supercache).php
RedirectMatch 403 (?i).(asp|bash|cfg|cgi|dll|exe|git|hg|ini|jsp|log|mdb|out|svn|swp|tar|rar|rdf|well)
RedirectMatch 403 (?i)/(^$|1|addlink|btn_hover|contact?|dkscsearch|dompdf|easyboard|ezooms|formvars|fotter|fpw|i|imagemanager|index1|install|iprober|legacy-comments|join|js-scraper|mapcms|mobiquo|phpinfo|phpspy|pingserver|playing|postgres|product|register|scraper|shell|signup|single-default|t|sqlpatch|test|textboxes.css|thumb|timthumb|topper|tz|ucp_profile|visit|webring.docs|webshell|wp-lenks|wp-links|wp-plugin|wp-signup|wpcima|zboard|zzr).php
RedirectMatch 403 (?i)/(=|$&|_mm|administrator|auth|bytest|cachedyou|cgi-|cvs|config.|crossdomain.xml|dbscripts|e107|etc/passwd|function.array-rand|function.parse-url|livecalendar|localhost|makefile|muieblackcat|release-notes|rnd|sitecore|tapatalk|wwwroot)
RedirectMatch 403 (?i)($(this).attr|&pws=0|&t=|&title=|%7BshopURL%7Dimages|_vti_|(null)|$itemURL|ask/data/ask|com_crop|document).ready(fu|echo.*kae|eval(|fckeditor.htm|function.parse|function()|gifamp|hilton.ch|index.php&quot|jfbswww|monstermmorpg|msnbot.htm|netdefender/hui|phpMyAdmin/config|proc/self|skin/zero_vote|/spaw2?|text/javascript|this.options)
</ifModule>

<IfModule mod_rewrite.c>
RewriteCond %{REQUEST_URI} !^/$ [NC]
RewriteCond %{QUERY_STRING} (mod|path|tag)= [NC,OR]
RewriteCond %{QUERY_STRING} ([a-zA-Z0-9]{32}) [NC,OR]
RewriteCond %{QUERY_STRING} (localhost|loopback|127.0.0.1) [NC,OR]
RewriteCond %{QUERY_STRING} (?|../|.|*|:|;|<|>|'|"|)|[|]|=\'$|%0A|%0D|%22|%27|%3C|%3E|%00|%2e%2e) [NC,OR]
RewriteCond %{QUERY_STRING} (benchmark|boot.ini|cast|declare|drop|echo.*kae|environ|etc/passwd|execute|input_file|insert|md5|mosconfig|scanner|select|set|union|update) [NC]
RewriteRule .* - [F,L]
</IfModule>

<ifModule mod_setenvif.c>
SetEnvIfNoCase User-Agent (<|>|'|<|%0A|%0D|%27|%3C|%3E|%00|hrefs) keep_out
SetEnvIfNoCase User-Agent (archiver|binlar|casper|checkprivacy|clshttp|cmsworldmap|comodo|curl|diavol|dotbot|email|extract|feedfinder|flicky|grab|harvest|httrack|ia_archiver|jakarta|kmccrew|libwww|loader|miner|nikto|nutch|planetwork|purebot|pycurl|python|scan|skygrid|sucker|turnit|vikspider|wget|winhttp|youda|zmeu|zune) keep_out
<limit GET POST PUT>
Options -Indexes FollowSymLinks MultiViews
Order Allow,Deny
Allow from all
Deny from env=keep_out
</limit>
</ifModule>

<IfModule mod_rewrite.c>
RewriteCond %{HTTP_REFERER} (<|>|'|%0A|%0D|%27|%3C|%3E|%00) [NC,OR]
RewriteCond %{HTTP_REFERER} ([a-zA-Z0-9]{32}) [NC]
RewriteRule .* - [F,L]
</IfModule>

<Limit GET POST PUT>
Order Allow,Deny
Allow from all
</Limit>

AddOutputFilterByType DEFLATE text/plain
AddOutputFilterByType DEFLATE text/html
AddOutputFilterByType DEFLATE text/xml
AddOutputFilterByType DEFLATE text/css
AddOutputFilterByType DEFLATE application/xml
AddOutputFilterByType DEFLATE application/xhtml+xml
AddOutputFilterByType DEFLATE application/rss+xml
AddOutputFilterByType DEFLATE application/javascript
AddOutputFilterByType DEFLATE application/x-javascript

<IfModule mod_expires.c>
ExpiresActive On
<FilesMatch ".(ico|jpg|jpeg|png|gif|js|css)$">
ExpiresDefault "access plus 1 year"
</FilesMatch>
</IfModule>

<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{REQUEST_FILENAME} !-l
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule .* index.php [L,QSA]
</IfModule>

On Github License

Files

Download PDF of Htaccess file
DEFLATE, GET, HTTP_REFERER, POST, PUT, QUERY_STRING, REQUEST_FILENAME, REQUEST_URI

Comments

Apache