.htaccess 20 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355
  1. Options +FollowSymLinks
  2. <IfModule mod_rewrite.c>
  3. RewriteEngine On
  4. RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
  5. RewriteBase /
  6. RewriteRule ^index\.php$ - [L]
  7. RewriteCond %{REQUEST_FILENAME} !-f
  8. RewriteCond %{REQUEST_FILENAME} !-d
  9. RewriteRule . /index.php [L]
  10. </IfModule>
  11. #### Use /wp/ subdirectory ####
  12. <IfModule mod_rewrite.c>
  13. RewriteEngine On
  14. RewriteBase /
  15. RewriteRule ^(wp-admin/.*)$ /wp/$1 [L]
  16. RewriteRule ^(wp-[^/]+\.php)$ /wp/$1 [L]
  17. RewriteRule ^xmlrpc\.php$ /wp/xmlrpc.php [L]
  18. RewriteRule ^(wp-includes/.*)$ /wp/$1 [L]
  19. </IfModule>
  20. #### Block wp-config.php ####
  21. <files wp-config.php>
  22. Order allow,deny
  23. Deny from all
  24. </files>
  25. #### Block xmlrpc.php ####
  26. <Files xmlrpc.php>
  27. Order allow,deny
  28. Deny from all
  29. </Files>
  30. #### Block /wp-json/wp/v2/users & wp-json/wp/v2/comments ####
  31. <IfModule mod_rewrite.c>
  32. RewriteCond %{REQUEST_METHOD} ^(GET|POST|PUT|PATCH|DELETE) [NC]
  33. RewriteCond %{REQUEST_URI} ^.*wp-json/wp/v2/(users|comments) [NC]
  34. RewriteRule ^(.*)$ - [F]
  35. </IfModule>
  36. #### Stop Apache from serving .ht* files ####
  37. <Files ~ "^\.ht">
  38. Order allow,deny
  39. Deny from all
  40. </Files>
  41. #### Protect wp-login.php ####
  42. ####<Files wp-login.php>
  43. #### AuthName "Private"
  44. #### AuthType Basic
  45. #### AuthUserFile /var/www/domain.com/.htpasswd
  46. #### require valid-user
  47. ####</Files>
  48. #### block blade.php files ####
  49. <IfModule mod_headers.c>
  50. <FilesMatch ".+\.(blade\.php)$">
  51. <IfModule mod_authz_core.c>
  52. Require all denied
  53. </IfModule>
  54. </FilesMatch>
  55. </IfModule>
  56. <IfModule mod_rewrite.c>
  57. RewriteCond %{SCRIPT_FILENAME} -d [OR]
  58. RewriteCond %{SCRIPT_FILENAME} -f
  59. RewriteRule "(^|/)\." - [F]
  60. </IfModule>
  61. #### Force SSL ####
  62. #RewriteEngine On
  63. #RewriteCond %{HTTPS} !=on
  64. #RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
  65. <IfModule mod_autoindex.c>
  66. Options -Indexes
  67. </IfModule>
  68. <IfModule mod_headers.c>
  69. Header set X-Content-Type-Options "nosniff"
  70. </IfModule>
  71. <IfModule mod_headers.c>
  72. Header set X-XSS-Protection "1; mode=block"
  73. <FilesMatch "\.(appcache|atom|crx|css|cur|eot|f4[abpv]|flv|gif|htc|ico|jpe?g|js|json(ld)?|m4[av]|manifest|map|mp4|oex|og[agv]|opus|otf|pdf|png|rdf|rss|safariextz|svgz?|swf|tt[cf]|vcf|vtt|webapp|web[mp]|woff|xml|xpi)$">
  74. Header unset X-XSS-Protection
  75. </FilesMatch>
  76. </IfModule>
  77. <IfModule mod_headers.c>
  78. Header unset ETag
  79. </IfModule>
  80. FileETag None
  81. <IfModule mod_headers.c>
  82. <FilesMatch "\.(eot|otf|tt[cf]|woff)$">
  83. Header set Access-Control-Allow-Origin "*"
  84. </FilesMatch>
  85. </IfModule>
  86. <IfModule mod_headers.c>
  87. Header set X-Frame-Options "DENY"
  88. <FilesMatch "\.(appcache|atom|crx|css|cur|eot|f4[abpv]|flv|gif|htc|ico|jpe?g|js|json(ld)?|m4[av]|manifest|map|mp4|oex|og[agv]|opus|otf|pdf|png|rdf|rss|safariextz|svgz?|swf|tt[cf]|vcf|vtt|webapp|web[mp]|woff|xml|xpi)$">
  89. Header unset X-Frame-Options
  90. </FilesMatch>
  91. </IfModule>
  92. <IfModule mod_setenvif.c>
  93. <IfModule mod_headers.c>
  94. <FilesMatch "\.(cur|gif|ico|jpe?g|png|svgz?|webp)$">
  95. SetEnvIf Origin ":" IS_CORS
  96. Header set Access-Control-Allow-Origin "*" env=IS_CORS
  97. </FilesMatch>
  98. </IfModule>
  99. </IfModule>
  100. <FilesMatch "(^#.*#|\.(env|bak|config|dist|fla|in[ci]|log|psd|sh|sql|sw[op])|~)$">
  101. <IfModule !mod_authz_core.c>
  102. Order allow,deny
  103. Deny from all
  104. Satisfy All
  105. </IfModule>
  106. <IfModule mod_authz_core.c>
  107. Require all denied
  108. </IfModule>
  109. </FilesMatch>
  110. <IfModule mod_headers.c>
  111. <FilesMatch "\.(js|css|xml|gz)$">
  112. Header append Vary: Accept-Encoding
  113. </FilesMatch>
  114. </IfModule>
  115. <IfModule mod_headers.c>
  116. Header set X-UA-Compatible "IE=edge"
  117. <FilesMatch "\.(appcache|atom|crx|css|cur|eot|f4[abpv]|flv|gif|htc|ico|jpe?g|js|json(ld)?|m4[av]|manifest|map|mp4|oex|og[agv]|opus|otf|pdf|png|rdf|rss|safariextz|svgz?|swf|tt[cf]|vcf|vtt|webapp|web[mp]|woff|xml|xpi)$">
  118. Header unset X-UA-Compatible
  119. </FilesMatch>
  120. </IfModule>
  121. Header set Cache-Control "max-age=7200, must-revalidate"
  122. <IfModule mod_mime.c>
  123. AddType audio/mp4 m4a f4a f4b
  124. AddType audio/ogg oga ogg opus
  125. AddType application/json json map
  126. AddType application/ld+json jsonld
  127. AddType application/javascript js
  128. AddType video/mp4 f4v f4p m4v mp4
  129. AddType video/ogg ogv
  130. AddType video/webm webm
  131. AddType video/x-flv flv
  132. AddType application/font-woff woff
  133. AddType application/vnd.ms-fontobject eot
  134. AddType application/x-font-ttf ttc ttf
  135. AddType font/opentype otf
  136. AddType image/svg+xml svgz
  137. AddEncoding gzip svgz
  138. AddType application/octet-stream safariextz
  139. AddType application/x-chrome-extension crx
  140. AddType application/x-web-app-manifest+json webapp
  141. AddType application/xml atom rdf rss xml
  142. AddType image/x-icon cur
  143. AddType text/cache-manifest appcache manifest
  144. AddType text/x-vcard vcf
  145. </IfModule>
  146. <IfModule mod_mime.c>
  147. AddCharset utf-8 .atom .css .js .json .jsonld .rss .vtt .webapp .xml
  148. </IfModule>
  149. <IfModule mod_expires.c>
  150. ExpiresActive on
  151. ExpiresDefault "access plus 1 month"
  152. ExpiresByType text/html "access plus 0 seconds"
  153. ExpiresByType text/css "access plus 1 year"
  154. ExpiresByType image/jpeg "access plus 1 year"
  155. ExpiresByType image/png "access plus 1 year"
  156. ExpiresByType application/javascript "access plus 1 year"
  157. ExpiresByType text/javascript "access plus 1 year"
  158. ExpiresByType text/javascript A2592000
  159. ExpiresByType image/x-icon "access plus 1 week"
  160. ExpiresByType text/x-component "access plus 1 month"
  161. ExpiresByType audio/ogg "access plus 1 month"
  162. ExpiresByType image/gif "access plus 1 month"
  163. ExpiresByType video/mp4 "access plus 1 month"
  164. ExpiresByType video/ogg "access plus 1 month"
  165. ExpiresByType video/webm "access plus 1 month"
  166. ExpiresByType application/font-woff "access plus 1 month"
  167. ExpiresByType application/vnd.ms-fontobject "access plus 1 month"
  168. ExpiresByType application/x-font-ttf "access plus 1 month"
  169. ExpiresByType font/opentype "access plus 1 month"
  170. ExpiresByType image/svg+xml "access plus 1 month"
  171. ExpiresByType text/xml "access plus 0 seconds"
  172. ExpiresByType application/x-web-app-manifest+json "access plus 0 seconds"
  173. ExpiresByType text/cache-manifest "access plus 0 seconds"
  174. ExpiresByType application/json "access plus 0 seconds"
  175. ExpiresByType application/ld+json "access plus 0 seconds"
  176. ExpiresByType application/xml "access plus 0 seconds"
  177. ExpiresByType application/atom+xml "access plus 1 hour"
  178. ExpiresByType application/rss+xml "access plus 1 hour"
  179. </IfModule>
  180. <IfModule mod_deflate.c>
  181. <IfModule mod_setenvif.c>
  182. <IfModule mod_headers.c>
  183. SetEnvIfNoCase ^(Accept-EncodXng|X-cept-Encoding|X{15}|~{15}|-{15})$ ^((gzip|deflate)\s*,?\s*)+|[X~-]{4,13}$ HAVE_Accept-Encoding
  184. RequestHeader append Accept-Encoding "gzip,deflate" env=HAVE_Accept-Encoding
  185. </IfModule>
  186. </IfModule>
  187. <IfModule mod_filter.c>
  188. AddOutputFilterByType DEFLATE application/atom+xml \
  189. application/javascript \
  190. application/json \
  191. application/ld+json \
  192. application/rss+xml \
  193. application/vnd.ms-fontobject \
  194. application/x-font-ttf \
  195. application/x-web-app-manifest+json \
  196. application/xhtml+xml \
  197. application/xml \
  198. font/opentype \
  199. image/svg+xml \
  200. image/x-icon \
  201. text/css \
  202. text/html \
  203. text/plain \
  204. text/x-component \
  205. text/xml
  206. </IfModule>
  207. </IfModule>
  208. <IfModule mod_rewrite.c>
  209. RewriteEngine on
  210. Options +FollowSymlinks
  211. RewriteCond %{HTTP_REFERER} ^https?://([^.]+\.)*semalt\.com [NC,OR]
  212. RewriteCond %{HTTP_REFERER} ^https?://([^.]+\.)*savetubevideo\.com\ [NC,OR]
  213. RewriteCond %{HTTP_REFERER} ^https?://([^.]+\.)*kambasoft\.com\ [NC,OR]
  214. RewriteCond %{HTTP_REFERER} ^https?://([^.]+\.)*srecorder\.com\ [NC,OR]
  215. RewriteCond %{HTTP_REFERER} ^https?://([^.]+\.)*4webmasters.org\ [NC,OR]
  216. RewriteCond %{HTTP_REFERER} ^https?://([^.]+\.)*best\-seo\-offer\.com [NC,OR]
  217. RewriteCond %{HTTP_REFERER} best\-seo\-offer\.com [NC,OR]
  218. RewriteCond %{HTTP_REFERER} ^https?://([^.]+\.)*best\-seo\-solution\.com [NC,OR]
  219. RewriteCond %{HTTP_REFERER} best\-seo\-solution\.com [NC,OR]
  220. RewriteCond %{HTTP_REFERER} ^https?://([^.]+\.)*buttons\-for\-website\.com [NC,OR]
  221. RewriteCond %{HTTP_REFERER} buttons\-for\-website\.com [NC,OR]
  222. RewriteCond %{HTTP_REFERER} ^https?://([^.]+\.)*buttons\-for\-your\-website\.com [NC,OR]
  223. RewriteCond %{HTTP_REFERER} buttons\-for\-your\-website\.com [NC,OR]
  224. RewriteCond %{HTTP_REFERER} ^https?://([^.]+\.)*justprofit\.xyz [NC,OR]
  225. RewriteCond %{HTTP_REFERER} justprofit\.xyz [NC,OR]
  226. RewriteCond %{HTTP_REFERER} ^https?://([^.]+\.)*100dollars\-seo\.com [NC,OR]
  227. RewriteCond %{HTTP_REFERER} 100dollars\-seo\.com [NC,OR]
  228. RewriteCond %{HTTP_REFERER} 100dollars-seo.com [NC,OR]
  229. RewriteCond %{HTTP_REFERER} ^https?://([^.]+\.)*7makemoneyonline.com\.com [NC]
  230. RewriteCond %{HTTP_REFERER} ^https?://([^.]+\.)*best-seo-software\.xyz [NC,OR]
  231. RewriteCond %{HTTP_REFERER} best-seo-software\.xyz [NC,OR]
  232. RewriteCond %{HTTP_REFERER} ^https?://([^.]+\.)*1-99seo\.com [NC,OR]
  233. RewriteCond %{HTTP_REFERER} 1-99seo\.com [NC,OR]
  234. RewriteRule .* - [F]
  235. </IfModule>
  236. ############# 7G FIREWALL v1.3 20200903 #################
  237. ###### @ https://perishablepress.com/7g-firewall/ #######
  238. ServerSignature Off
  239. <IfModule mod_rewrite.c>
  240. RewriteCond %{QUERY_STRING} ([a-z0-9]{2000,}) [NC,OR]
  241. RewriteCond %{QUERY_STRING} (/|%2f)(:|%3a)(/|%2f) [NC,OR]
  242. RewriteCond %{QUERY_STRING} (/|%2f)(\*|%2a)(\*|%2a)(/|%2f) [NC,OR]
  243. RewriteCond %{QUERY_STRING} (`|<|>|\^|\|\\|0x00|%00|%0d%0a) [NC,OR]
  244. RewriteCond %{QUERY_STRING} (cmd|command)(=|%3d)(chdir|mkdir)(.*)(x20) [NC,OR]
  245. RewriteCond %{QUERY_STRING} (ckfinder|fullclick|ckfinder|fckeditor) [NC,OR]
  246. RewriteCond %{QUERY_STRING} (globals|mosconfig([a-z_]{1,22})|request)(=|\[) [NC,OR]
  247. RewriteCond %{QUERY_STRING} (/|%2f)((wp-)?config)((\.|%2e)inc)?((\.|%2e)php) [NC,OR]
  248. RewriteCond %{QUERY_STRING} (thumbs?(_editor|open)?|tim(thumbs?)?)((\.|%2e)php) [NC,OR]
  249. RewriteCond %{QUERY_STRING} (absolute_|base|root_)(dir|path)(=|%3d)(ftp|https?) [NC,OR]
  250. RewriteCond %{QUERY_STRING} (localhost|loopback|127(\.|%2e)0(\.|%2e)0(\.|%2e)1) [NC,OR]
  251. RewriteCond %{QUERY_STRING} (s)?(ftp|inurl|php)(s)?(:(/|%2f|%u2215)(/|%2f|%u2215)) [NC,OR]
  252. RewriteCond %{QUERY_STRING} (\.|20)(get|the)(_|%5f)(permalink|posts_page_url)(\(|%28) [NC,OR]
  253. RewriteCond %{QUERY_STRING} ((boot|win)((\.|%2e)ini)|etc(/|%2f)passwd|self(/|%2f)environ) [NC,OR]
  254. RewriteCond %{QUERY_STRING} (((/|%2f){3,3})|((\.|%2e){3,3})|((\.|%2e){2,2})(/|%2f|%u2215)) [NC,OR]
  255. RewriteCond %{QUERY_STRING} (benchmark|char|exec|fopen|function|html)(.*)(\(|%28)(.*)(\)|%29) [NC,OR]
  256. RewriteCond %{QUERY_STRING} (php)([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}) [NC,OR]
  257. RewriteCond %{QUERY_STRING} (e|%65|%45)(v|%76|%56)(a|%61|%31)(l|%6c|%4c)(.*)(\(|%28)(.*)(\)|%29) [NC,OR]
  258. RewriteCond %{QUERY_STRING} (/|%2f)(=|%3d|$&|_mm|cgi(\.|-)|inurl(:|%3a)(/|%2f)|(mod|path)(=|%3d)(\.|%2e)) [NC,OR]
  259. RewriteCond %{QUERY_STRING} (<|%3c)(.*)(e|%65|%45)(m|%6d|%4d)(b|%62|%42)(e|%65|%45)(d|%64|%44)(.*)(>|%3e) [NC,OR]
  260. RewriteCond %{QUERY_STRING} (<|%3c)(.*)(i|%69|%49)(f|%66|%46)(r|%72|%52)(a|%61|%41)(m|%6d|%4d)(e|%65|%45)(.*)(>|%3e) [NC,OR]
  261. RewriteCond %{QUERY_STRING} (<|%3c)(.*)(o|%4f|%6f)(b|%62|%42)(j|%4a|%6a)(e|%65|%45)(c|%63|%43)(t|%74|%54)(.*)(>|%3e) [NC,OR]
  262. RewriteCond %{QUERY_STRING} (<|%3c)(.*)(s|%73|%53)(c|%63|%43)(r|%72|%52)(i|%69|%49)(p|%70|%50)(t|%74|%54)(.*)(>|%3e) [NC,OR]
  263. RewriteCond %{QUERY_STRING} (\+|%2b|%20)(d|%64|%44)(e|%65|%45)(l|%6c|%4c)(e|%65|%45)(t|%74|%54)(e|%65|%45)(\+|%2b|%20) [NC,OR]
  264. RewriteCond %{QUERY_STRING} (\+|%2b|%20)(i|%69|%49)(n|%6e|%4e)(s|%73|%53)(e|%65|%45)(r|%72|%52)(t|%74|%54)(\+|%2b|%20) [NC,OR]
  265. RewriteCond %{QUERY_STRING} (\+|%2b|%20)(s|%73|%53)(e|%65|%45)(l|%6c|%4c)(e|%65|%45)(c|%63|%43)(t|%74|%54)(\+|%2b|%20) [NC,OR]
  266. RewriteCond %{QUERY_STRING} (\+|%2b|%20)(u|%75|%55)(p|%70|%50)(d|%64|%44)(a|%61|%41)(t|%74|%54)(e|%65|%45)(\+|%2b|%20) [NC,OR]
  267. RewriteCond %{QUERY_STRING} (\\x00|(\"|%22|\'|%27)?0(\"|%22|\'|%27)?(=|%3d)(\"|%22|\'|%27)?0|cast(\(|%28)0x|or%201(=|%3d)1) [NC,OR]
  268. RewriteCond %{QUERY_STRING} (g|%67|%47)(l|%6c|%4c)(o|%6f|%4f)(b|%62|%42)(a|%61|%41)(l|%6c|%4c)(s|%73|%53)(=|[|%[0-9A-Z]{0,2}) [NC,OR]
  269. RewriteCond %{QUERY_STRING} (_|%5f)(r|%72|%52)(e|%65|%45)(q|%71|%51)(u|%75|%55)(e|%65|%45)(s|%73|%53)(t|%74|%54)(=|[|%[0-9A-Z]{2,}) [NC,OR]
  270. RewriteCond %{QUERY_STRING} (j|%6a|%4a)(a|%61|%41)(v|%76|%56)(a|%61|%31)(s|%73|%53)(c|%63|%43)(r|%72|%52)(i|%69|%49)(p|%70|%50)(t|%74|%54)(:|%3a)(.*)(;|%3b|\)|%29) [NC,OR]
  271. RewriteCond %{QUERY_STRING} (b|%62|%42)(a|%61|%41)(s|%73|%53)(e|%65|%45)(6|%36)(4|%34)(_|%5f)(e|%65|%45|d|%64|%44)(e|%65|%45|n|%6e|%4e)(c|%63|%43)(o|%6f|%4f)(d|%64|%44)(e|%65|%45)(.*)(\()(.*)(\)) [NC,OR]
  272. RewriteCond %{QUERY_STRING} (@copy|\$_(files|get|post)|allow_url_(fopen|include)|auto_prepend_file|blexbot|browsersploit|(c99|php)shell|curl(_exec|test)|disable_functions?|document_root|elastix|encodeuricom|exploit|fclose|fgets|file_put_contents|fputs|fsbuff|fsockopen|gethostbyname|grablogin|hmei7|input_file|null|open_basedir|outfile|passthru|phpinfo|popen|proc_open|quickbrute|remoteview|root_path|safe_mode|shell_exec|site((.){0,2})copier|sux0r|trojan|user_func_array|wget|xertive) [NC,OR]
  273. RewriteCond %{QUERY_STRING} (;|<|>|\'|\"|\)|%0a|%0d|%22|%27|%3c|%3e|%00)(.*)(/\*|alter|base64|benchmark|cast|char|concat|convert|create|encode|declare|delete|drop|insert|md5|order|request|script|select|set|union|update) [NC,OR]
  274. RewriteCond %{QUERY_STRING} ((\+|%2b)(concat|delete|get|select|union)(\+|%2b)) [NC,OR]
  275. RewriteCond %{QUERY_STRING} (union)(.*)(select)(.*)(\(|%28) [NC,OR]
  276. RewriteCond %{QUERY_STRING} (concat)(.*)(\(|%28) [NC]
  277. RewriteRule .* - [F,L]
  278. </IfModule>
  279. <IfModule mod_rewrite.c>
  280. RewriteCond %{REQUEST_URI} ([a-z0-9]{2000,}) [NC,OR]
  281. RewriteCond %{REQUEST_URI} (=?\\(\'|%27)/?)(\.) [NC,OR]
  282. RewriteCond %{REQUEST_URI} (\^|`|<|>|%|\\|\{|\}|\|) [NC,OR]
  283. RewriteCond %{REQUEST_URI} (\.)(php)(\()?([0-9]+)(\))?(/)?$ [NC,OR]
  284. RewriteCond %{REQUEST_URI} (\.|20)(get|the)(_)(permalink|posts_page_url)(\() [NC,OR]
  285. RewriteCond %{REQUEST_URI} (///|\?\?|/&&|/\*(.*)\*/|/:/|\\\\|0x00|%00|%0d%0a) [NC,OR]
  286. RewriteCond %{REQUEST_URI} (\.)(ds_store|htaccess|htpasswd|init?|mysql-select-db)(/)?$ [NC,OR]
  287. RewriteCond %{REQUEST_URI} (/)(bin)(/)(cc|chmod|chsh|cpp|echo|id|kill|mail|nasm|perl|ping|ps|python|tclsh)(/)?$ [NC,OR]
  288. RewriteCond %{REQUEST_URI} (/)(::[0-9999]|%3a%3a[0-9999]|127\.0\.0\.1|localhost|loopback|makefile|pingserver|wwwroot)(/)? [NC,OR]
  289. RewriteCond %{REQUEST_URI} (\(null\)|\{\$itemURL\}|cAsT\(0x|echo(.*)kae|etc/passwd|eval\(|self/environ|\+union\+all\+select) [NC,OR]
  290. RewriteCond %{REQUEST_URI} (/)(awstats|(c99|php|web)shell|document_root|error_log|listinfo|muieblack|remoteview|site((.){0,2})copier|sqlpatch|sux0r) [NC,OR]
  291. RewriteCond %{REQUEST_URI} (/)((php|web)?shell|crossdomain|fileditor|locus7|nstview|php(get|remoteview|writer)|r57|remview|sshphp|storm7|webadmin)(.*)(\.|\() [NC,OR]
  292. RewriteCond %{REQUEST_URI} (/)(author-panel|bitrix|class|database|(db|mysql)-?admin|filemanager|htdocs|httpdocs|https?|mailman|mailto|msoffice|mysql|_?php-?my-?admin(.*)|tmp|undefined|usage|var|vhosts|webmaster|www)(/) [NC,OR]
  293. RewriteCond %{REQUEST_URI} (\.)(7z|ab4|afm|aspx?|bash|ba?k?|bz2|cfg|cfml?|cgi|ctl|dat|db|dll|eml|et2|exe|fec|fla|hg|inc|ini|inv|jsp|log|lqd|mbf|mdb|mmw|mny|old|one|out|passwd|pdb|pl|psd|pst|ptdb|pwd|py|qbb|qdf|rar|rdf|sdb|sql|sh|soa|swf|swl|swp|stx|tar|tax|tgz|tls|tmd|wow|zlib)$ [NC,OR]
  294. RewriteCond %{REQUEST_URI} (base64_(en|de)code|benchmark|child_terminate|curl_exec|e?chr|eval|function|fwrite|(f|p)open|html|leak|passthru|p?fsockopen|phpinfo|posix_(kill|mkfifo|setpgid|setsid|setuid)|proc_(close|get_status|nice|open|terminate)|(shell_)?exec|system)(.*)(\()(.*)(\)) [NC,OR]
  295. RewriteCond %{REQUEST_URI} (/)(^$|00.temp00|0day|3xp|70bex?|admin_events|bkht|(php|web)?shell|configbak|curltest|db|dompdf|filenetworks|hmei7|index\.php/index\.php/index|jahat|kcrew|keywordspy|mobiquo|mysql|nessus|php-?info|racrew|sql|vuln|webconfig|(wp-)?conf(ig)?(uration)?|xertive)(\.php) [NC]
  296. </IfModule>
  297. <IfModule mod_rewrite.c>
  298. RewriteCond %{HTTP_USER_AGENT} ([a-z0-9]{2000,}) [NC,OR]
  299. RewriteCond %{HTTP_USER_AGENT} (&lt;|%0a|%0d|%27|%3c|%3e|%00|0x00) [NC,OR]
  300. RewriteCond %{HTTP_USER_AGENT} ((c99|php|web)shell|remoteview|site((.){0,2})copier) [NC,OR]
  301. RewriteCond %{HTTP_USER_AGENT} (base64_decode|bin/bash|disconnect|eval|lwp-download|unserialize|\\\x22) [NC,OR]
  302. RewriteCond %{HTTP_USER_AGENT} (360Spider|acapbot|acoonbot|ahrefs|alexibot|asterias|attackbot|backdorbot|becomebot|binlar|blackwidow|blekkobot|blexbot|blowfish|bullseye|bunnys|butterfly|careerbot|casper|checkpriv|cheesebot|cherrypick|chinaclaw|choppy|clshttp|cmsworld|copernic|copyrightcheck|cosmos|crescent|cy_cho|datacha|demon|diavol|discobot|dittospyder|dotbot|dotnetdotcom|dumbot|emailcollector|emailsiphon|emailwolf|exabot|extract|eyenetie|feedfinder|flaming|flashget|flicky|foobot|g00g1e|getright|gigabot|go-ahead-got|gozilla|grabnet|grafula|harvest|heritrix|httrack|icarus6j|jetbot|jetcar|jikespider|kmccrew|leechftp|libweb|linkextractor|linkscan|linkwalker|loader|masscan|miner|majestic|mechanize|mj12bot|morfeus|moveoverbot|netmechanic|netspider|nicerspro|nikto|ninja|nutch|octopus|pagegrabber|planetwork|postrank|proximic|purebot|pycurl|python|queryn|queryseeker|radian6|radiation|realdownload|rogerbot|scooter|seekerspider|semalt|siclab|sindice|sistrix|sitebot|siteexplorer|sitesnagger|skygrid|smartdownload|snoopy|sosospider|spankbot|spbot|sqlmap|stackrambler|stripper|sucker|surftbot|sux0r|suzukacz|suzuran|takeout|teleport|telesoft|true_robots|turingos|turnit|vampire|vikspider|voideye|webleacher|webreaper|webstripper|webvac|webviewer|webwhacker|winhttp|wwwoffle|woxbot|xaldon|xxxyy|yamanalab|yioopbot|youda|zeus|zmeu|zune|zyborg) [NC]
  303. RewriteRule .* - [F,L]
  304. </IfModule>
  305. <IfModule mod_rewrite.c>
  306. RewriteCond %{REMOTE_HOST} (163data|amazonaws|colocrossing|crimea|g00g1e|justhost|kanagawa|loopia|masterhost|onlinehome|poneytel|sprintdatacenter|reverse.softlayer|safenet|ttnet|woodpecker|wowrack) [NC]
  307. RewriteRule .* - [F,L]
  308. </IfModule>
  309. <IfModule mod_rewrite.c>
  310. RewriteCond %{HTTP_REFERER} (semalt.com|todaperfeita) [NC,OR]
  311. RewriteCond %{HTTP_REFERER} (ambien|blue\spill|cocaine|ejaculat|erectile|erections|hoodia|huronriveracres|impotence|levitra|libido|lipitor|phentermin|pro[sz]ac|sandyauer|tramadol|troyhamby|ultram|unicauca|valium|viagra|vicodin|xanax|ypxaieo) [NC]
  312. RewriteRule .* - [F,L]
  313. </IfModule>
  314. <IfModule mod_rewrite.c>
  315. RewriteCond %{REQUEST_METHOD} ^(connect|debug|move|trace|track) [NC]
  316. RewriteRule .* - [F,L]
  317. </IfModule>