Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #
- #####################################################
- ## Can be commented out if causes errors, see notes above.
- Options +FollowSymLinks
- #
- # mod_rewrite in use
- RewriteEngine On
- ########## Begin - Rewrite rules to block out some common exploits
- ## If you experience problems on your site block out the operations listed below
- ## This attempts to block the most common type of exploit `attempts` to Joomla!
- #
- ## Deny access to extension xml files (uncomment out to activate)
- #<Files ~ "\.xml$">
- #Order allow,deny
- #Deny from all
- #Satisfy all
- #</Files>
- ## End of deny access to extension xml files
- RewriteCond %{QUERY_STRING} mosConfig_[a-zA-Z_]{1,21}(=|\%3D) [OR]
- # Block out any script trying to base64_encode crap to send via URL
- RewriteCond %{QUERY_STRING} base64_encode.*\(.*\) [OR]
- # Block out any script that includes a <script> tag in URL
- RewriteCond %{QUERY_STRING} (\<|%3C).*script.*(\>|%3E) [NC,OR]
- # Block out any script trying to set a PHP GLOBALS variable via URL
- RewriteCond %{QUERY_STRING} GLOBALS(=|\[|\%[0-9A-Z]{0,2}) [OR]
- # Block out any script trying to modify a _REQUEST variable via URL
- RewriteCond %{QUERY_STRING} _REQUEST(=|\[|\%[0-9A-Z]{0,2})
- # Send all blocked request to homepage with 403 Forbidden error!
- RewriteRule ^(.*)$ index.php [F,L]
- #
- ########## End - Rewrite rules to block out some common exploits
- # Uncomment following line if your webserver's URL
- # is not directly related to physical file paths.
- # Update Your Joomla! Directory (just / for root)
- # RewriteBase /
- ########## Begin - Joomla! core SEF Section
- #
- RewriteCond %{REQUEST_FILENAME} !-f
- RewriteCond %{REQUEST_FILENAME} !-d
- RewriteCond %{REQUEST_URI} !^/index.php
- RewriteCond %{REQUEST_URI} (/|\.php|\.html|\.htm|\.feed|\.pdf|\.raw|/[^.]*)$ [NC]
- RewriteRule (.*) index.php
- RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization},L]
- #
- ########## End - Joomla! core SEF Section
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement