php-e107/e107.htaccess

# Custom error pages for php scripts only
<FilesMatch \.php$> 
	ErrorDocument 400 /error.php?400
	ErrorDocument 401 /error.php?401
	ErrorDocument 403 /error.php?403
	ErrorDocument 404 /error.php?404 
	ErrorDocument 500 /error.php?500
</FilesMatch>

### Performance
	AddDefaultCharset utf-8

### Security
	ServerSignature Off

# secure htaccess file
<Files .htaccess>
	order allow,deny
	deny from all
</Files>

# protect e107_config.php
<Files e107_config.php>
	order allow,deny
	deny from all
</Files>


### Block Bad Bots
	SetEnvIfNoCase ^User-Agent$ .*(craftbot|download|extract|stripper|sucker|ninja|clshttp|webspider|leacher|collector|grabber|webpictures) HTTP_SAFE_BADBOT
	SetEnvIfNoCase ^User-Agent$ .*(libwww-perl|aesop_com_spiderman) HTTP_SAFE_BADBOT
	Deny from env=HTTP_SAFE_BADBOT

### Disable directory listing
	Options All -Indexes

### limit file uploads to 10mb
### LimitRequestBody 10240000

<IfModule mod_rewrite.c>
### enable rewrites
	Options +FollowSymLinks 
	RewriteEngine On


### Set this to your e107 site root, path relative to web root
### Uncomment it in case your server isn't able to rewrite proper 
	#RewriteBase /
	
### Allow only GET and POST methods
	RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK|OPTIONS|HEAD)
	RewriteRule .* - [F]

### send 404 on missing files in these folders 
	RewriteCond %{REQUEST_URI} !^/(e107_images|e107_files)/ 

### don't rewrite for existing files, directories and links
	RewriteCond %{REQUEST_FILENAME} !-f
	RewriteCond %{REQUEST_FILENAME} !-d
	RewriteCond %{REQUEST_FILENAME} !-l 
	
### Single entry point ###
	RewriteRule .* index.php [L]

</IfModule>
.htaccess sync to 0.7 2010-12-20 15:41:01 +00:00			`# Custom error pages for php scripts only`
			`<FilesMatch \.php$>`
			`ErrorDocument 400 /error.php?400`
			`ErrorDocument 401 /error.php?401`
			`ErrorDocument 403 /error.php?403`
			`ErrorDocument 404 /error.php?404`
			`ErrorDocument 500 /error.php?500`
			`</FilesMatch>`

A few more security-related entries added. 2013-02-05 11:07:57 -08:00			`### Performance`
			`AddDefaultCharset utf-8`

			`### Security`
			`ServerSignature Off`

More .htaccess options added. Requires testing 2013-01-31 14:31:57 -08:00			`# secure htaccess file`
			`<Files .htaccess>`
A few more security-related entries added. 2013-02-05 11:07:57 -08:00			`order allow,deny`
			`deny from all`
More .htaccess options added. Requires testing 2013-01-31 14:31:57 -08:00			`</Files>`

			`# protect e107_config.php`
			`<Files e107_config.php>`
A few more security-related entries added. 2013-02-05 11:07:57 -08:00			`order allow,deny`
			`deny from all`
More .htaccess options added. Requires testing 2013-01-31 14:31:57 -08:00			`</Files>`


A few more security-related entries added. 2013-02-05 11:07:57 -08:00			`### Block Bad Bots`
			`SetEnvIfNoCase ^User-Agent$ .*(craftbot\|download\|extract\|stripper\|sucker\|ninja\|clshttp\|webspider\|leacher\|collector\|grabber\|webpictures) HTTP_SAFE_BADBOT`
			`SetEnvIfNoCase ^User-Agent$ .*(libwww-perl\|aesop_com_spiderman) HTTP_SAFE_BADBOT`
			`Deny from env=HTTP_SAFE_BADBOT`
More .htaccess options added. Requires testing 2013-01-31 14:31:57 -08:00
A few more security-related entries added. 2013-02-05 11:07:57 -08:00			`### Disable directory listing`
			`Options All -Indexes`
More .htaccess options added. Requires testing 2013-01-31 14:31:57 -08:00
A few more security-related entries added. 2013-02-05 11:07:57 -08:00			`### limit file uploads to 10mb`
			`### LimitRequestBody 10240000`
More .htaccess options added. Requires testing 2013-01-31 14:31:57 -08:00
htaccess fixes - thanks streaky 2008-12-03 20:57:22 +00:00			`<IfModule mod_rewrite.c>`
More News work, front-end started (rewrites are BROKEN), work in progres 2009-09-13 16:37:18 +00:00			`### enable rewrites`
			`Options +FollowSymLinks`
			`RewriteEngine On`
eURL news mod rewrite profile - work in progress 2008-12-02 23:44:19 +00:00
A few more security-related entries added. 2013-02-05 11:07:57 -08:00
News front-end done - SEO, real SEF URLs (category list, item view), default item view changed to 'extend', default category list changed to 'list', comments are rendered now by news code, new and improved news shortcodes 2009-09-14 18:22:16 +00:00			`### Set this to your e107 site root, path relative to web root`
RewriteBase made optional in htaccess template (rewrite should work fine without it in almost every case) 2011-12-10 00:08:51 +00:00			`### Uncomment it in case your server isn't able to rewrite proper`
			`#RewriteBase /`
A few more security-related entries added. 2013-02-05 11:07:57 -08:00
			`### Allow only GET and POST methods`
			`RewriteCond %{REQUEST_METHOD} ^(TRACE\|TRACK\|OPTIONS\|HEAD)`
			`RewriteRule .* - [F]`
eURL news mod rewrite profile - work in progress 2008-12-02 23:44:19 +00:00
More News work, front-end started (rewrites are BROKEN), work in progres 2009-09-13 16:37:18 +00:00			`### send 404 on missing files in these folders`
			`RewriteCond %{REQUEST_URI} !^/(e107_images\|e107_files)/`

			`### don't rewrite for existing files, directories and links`
			`RewriteCond %{REQUEST_FILENAME} !-f`
			`RewriteCond %{REQUEST_FILENAME} !-d`
			`RewriteCond %{REQUEST_FILENAME} !-l`

htaccess changes to fit system single entry point 2011-11-25 17:58:03 +00:00			`### Single entry point ###`
index.php is now system entry point, front page detection moved to index controller; various stabillity fixes and url admin interface improvements; htaccess template modfied to meet entry point changes; front page preference values (Front Page admin page) prefixed with 'url:' and 'route:' now accepted and recognized; full backward compatibility so far. 2011-12-01 22:08:23 +00:00			`RewriteRule .* index.php [L]`
More News work, front-end started (rewrites are BROKEN), work in progres 2009-09-13 16:37:18 +00:00
htaccess fixes - thanks streaky 2008-12-03 20:57:22 +00:00			`</IfModule>`