Skip to content

Commonwell / broker-site

Go to a project
Toggle navigation
Toggle navigation pinning
49e10649 by Jeff Balicki
Options

htaccess 

Signed-off-by: Jeff <jeff@gotenzing.com>
1 parent 3a516de9
Inline Side-by-side
Showing 13 changed files with 672 additions and 1 deletions
......@@ -6,7 +6,7 @@
/wp-content/upgrade
/wp-content/cache
.idea
.htaccess
node_modules
wp-content/plugins/wordfence/tmp
/web-uploads/commonwell-broker/wflogs
......
# Apache Configuration File
#ModPagespeedDisallow 'http://commonwell-corp.gotenzing.com/wp-content/uploads/wpcf7_captcha/*'
<IfModule pagespeed_module>
ModPagespeed off
</IfModule>
# (!) Using `.htaccess` files slows down Apache, therefore, if you have access
# to the main server config file (usually called `httpd.conf`), you should add
# this logic there: http://httpd.apache.org/docs/current/howto/htaccess.html.
# ##############################################################################
# # CROSS-ORIGIN RESOURCE SHARING (CORS) #
# ##############################################################################
# ------------------------------------------------------------------------------
# | Cross-domain AJAX requests |
# ------------------------------------------------------------------------------
# Enable cross-origin AJAX requests.
# http://code.google.com/p/html5security/wiki/CrossOriginRequestSecurity
# http://enable-cors.org/
# <IfModule mod_headers.c>
# Header set Access-Control-Allow-Origin "*"
# </IfModule>
# ------------------------------------------------------------------------------
# | CORS-enabled images |
# ------------------------------------------------------------------------------
# Send the CORS header for images when browsers request it.
# https://developer.mozilla.org/en/CORS_Enabled_Image
# http://blog.chromium.org/2011/07/using-cross-domain-images-in-webgl-and.html
# http://hacks.mozilla.org/2011/11/using-cors-to-load-webgl-textures-from-cross-domain-images/
<IfModule mod_setenvif.c>
<IfModule mod_headers.c>
<FilesMatch "\.(gif|ico|jpe?g|png|svg|svgz|webp)$">
SetEnvIf Origin ":" IS_CORS
Header set Access-Control-Allow-Origin "*" env=IS_CORS
</FilesMatch>
</IfModule>
</IfModule>
# ------------------------------------------------------------------------------
# | Web fonts access |
# ------------------------------------------------------------------------------
# Allow access from all domains for web fonts
<IfModule mod_headers.c>
# <FilesMatch "\.(eot|font.css|otf|ttc|ttf|woff)$">
Header set Access-Control-Allow-Origin "*"
# </FilesMatch>
</IfModule>
# ##############################################################################
# # ERRORS #
# ##############################################################################
# ------------------------------------------------------------------------------
# | 404 error prevention for non-existing redirected folders |
# ------------------------------------------------------------------------------
# Prevent Apache from returning a 404 error for a rewrite if a directory
# with the same name does not exist.
# http://httpd.apache.org/docs/current/content-negotiation.html#multiviews
# http://www.webmasterworld.com/apache/3808792.htm
Options -MultiViews
# ##############################################################################
# # INTERNET EXPLORER #
# ##############################################################################
# ------------------------------------------------------------------------------
# | Better website experience |
# ------------------------------------------------------------------------------
# Force IE to render pages in the highest available mode in the various
# cases when it may not: http://hsivonen.iki.fi/doctype/ie-mode.pdf.
# Use, if installed, Google Chrome Frame.
<IfModule mod_headers.c>
Header set X-UA-Compatible "IE=edge,chrome=1"
# `mod_headers` can't match based on the content-type, however, we only
# want to send this header for HTML pages and not for the other resources
<FilesMatch "\.(appcache|crx|css|eot|gif|htc|ico|jpe?g|js|m4a|m4v|manifest|mp4|oex|oga|ogg|ogv|otf|pdf|png|safariextz|svg|svgz|ttf|vcf|webapp|webm|webp|woff|xml|xpi)$">
Header unset X-UA-Compatible
</FilesMatch>
</IfModule>
# ##############################################################################
# # MIME TYPES AND ENCODING #
# ##############################################################################
# ------------------------------------------------------------------------------
# | Proper MIME types for all files |
# ------------------------------------------------------------------------------
<IfModule mod_mime.c>
# Audio
AddType audio/mp4 m4a f4a f4b
AddType audio/ogg oga ogg
# JavaScript
# Normalize to standard type (it's sniffed in IE anyways):
# http://tools.ietf.org/html/rfc4329#section-7.2
AddType application/javascript js jsonp
AddType application/json json
# Video
AddType video/mp4 mp4 m4v f4v f4p
AddType video/ogg ogv
AddType video/webm webm
AddType video/x-flv flv
# Web fonts
AddType application/font-woff woff
AddType application/vnd.ms-fontobject eot
# Browsers usually ignore the font MIME types and sniff the content,
# however, Chrome shows a warning if other MIME types are used for the
# following fonts.
AddType application/x-font-ttf ttc ttf
AddType font/opentype otf
# Make SVGZ fonts work on iPad:
# https://twitter.com/FontSquirrel/status/14855840545
AddType image/svg+xml svg svgz
AddEncoding gzip svgz
# Other
AddType application/octet-stream safariextz
AddType application/x-chrome-extension crx
AddType application/x-opera-extension oex
AddType application/x-shockwave-flash swf
AddType application/x-web-app-manifest+json webapp
AddType application/x-xpinstall xpi
AddType application/xml atom rdf rss xml
AddType image/webp webp
AddType image/x-icon ico
AddType text/cache-manifest appcache manifest
AddType text/vtt vtt
AddType text/x-component htc
AddType text/x-vcard vcf
</IfModule>
# ------------------------------------------------------------------------------
# | UTF-8 encoding |
# ------------------------------------------------------------------------------
# Use UTF-8 encoding for anything served as `text/html` or `text/plain`.
AddDefaultCharset utf-8
# Force UTF-8 for certain file formats.
<IfModule mod_mime.c>
AddCharset utf-8 .atom .css .js .json .rss .vtt .webapp .xml
</IfModule>
# ##############################################################################
# # URL REWRITES #
# ##############################################################################
# ------------------------------------------------------------------------------
# | Rewrite engine |
# ------------------------------------------------------------------------------
# Turning on the rewrite engine and enabling the `FollowSymLinks` option is
# necessary for the following directives to work.
# If your web host doesn't allow the `FollowSymlinks` option, you may need to
# comment it out and use `Options +SymLinksIfOwnerMatch` but, be aware of the
# performance impact: http://httpd.apache.org/docs/current/misc/perf-tuning.html#symlinks
# Also, some cloud hosting services require `RewriteBase` to be set:
# http://www.rackspace.com/knowledge_center/frequently-asked-question/why-is-mod-rewrite-not-working-on-my-site
<IfModule mod_rewrite.c>
Options +FollowSymlinks
# Options +SymLinksIfOwnerMatch
RewriteEngine On
# RewriteBase /
</IfModule>
# ------------------------------------------------------------------------------
# | Suppressing / Forcing the "www." at the beginning of URLs |
# ------------------------------------------------------------------------------
# The same content should never be available under two different URLs especially
# not with and without "www." at the beginning. This can cause SEO problems
# (duplicate content), therefore, you should choose one of the alternatives and
# redirect the other one.
# By default option 1 (no "www.") is activated:
# http://no-www.org/faq.php?q=class_b
# If you'd prefer to use option 2, just comment out all the lines from option 1
# and uncomment the ones from option 2.
# IMPORTANT: NEVER USE BOTH RULES AT THE SAME TIME!
# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
# Option 1: rewrite www.example.com → example.com
#<IfModule mod_rewrite.c>
# RewriteCond %{HTTPS} !=on
# RewriteCond %{HTTP_HOST} ^www\.(.+)$ [NC]
# RewriteRule ^ http://%1%{REQUEST_URI} [R=301,L]
#</IfModule>
# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
# Option 2: rewrite example.com → www.example.com
# Be aware that the following might not be a good idea if you use "real"
# subdomains for certain parts of your website.
# <IfModule mod_rewrite.c>
# RewriteCond %{HTTPS} !=on
# RewriteCond %{HTTP_HOST} !^www\..+$ [NC]
# RewriteRule ^ http://www.%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
# </IfModule>
# ##############################################################################
# # SECURITY #
# ##############################################################################
# ------------------------------------------------------------------------------
# | File access |
# ------------------------------------------------------------------------------
# Block access to directories without a default document.
# Usually you should leave this uncommented because you shouldn't allow anyone
# to surf through every directory on your server (which may include rather
# private places like the CMS's directories).
<IfModule mod_autoindex.c>
Options -Indexes
</IfModule>
# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
# Block access to hidden files and directories.
# This includes directories used by version control systems such as Git and SVN.
#<IfModule mod_rewrite.c>
# RewriteCond %{SCRIPT_FILENAME} -d [OR]
# RewriteCond %{SCRIPT_FILENAME} -f
# RewriteRule "(^|/)\." - [F]
#</IfModule>
# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
# Block access to backup and source files.
# These files may be left by some text editors and can pose a great security
# danger when anyone has access to them.
<FilesMatch "(^#.*#|\.(bak|config|dist|fla|inc|ini|log|psd|sh|sql|sw[op])|~)$">
Order allow,deny
Deny from all
Satisfy All
</FilesMatch>
# ------------------------------------------------------------------------------
# | Secure Sockets Layer (SSL) |
# ------------------------------------------------------------------------------
# Rewrite secure requests properly to prevent SSL certificate warnings, e.g.:
# prevent `https://www.example.com` when your certificate only allows
# `https://secure.example.com`.
# <IfModule mod_rewrite.c>
# RewriteCond %{SERVER_PORT} !^443
# RewriteRule ^ https://example-domain-please-change-me.com%{REQUEST_URI} [R=301,L]
# </IfModule>
# - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
# Force client-side SSL redirection.
# If a user types "example.com" in his browser, the above rule will redirect him
# to the secure version of the site. That still leaves a window of opportunity
# (the initial HTTP connection) for an attacker to downgrade or redirect the
# request. The following header ensures that browser will ONLY connect to your
# server via HTTPS, regardless of what the users type in the address bar.
# http://www.html5rocks.com/en/tutorials/security/transport-layer-security/
# <IfModule mod_headers.c>
# Header set Strict-Transport-Security max-age=16070400;
# </IfModule>
# ------------------------------------------------------------------------------
# | Server software information |
# ------------------------------------------------------------------------------
# Avoid displaying the exact Apache version number, the description of the
# generic OS-type and the information about Apache's compiled-in modules.
# ADD THIS DIRECTIVE IN THE `httpd.conf` AS IT WILL NOT WORK IN THE `.htaccess`!
# ServerTokens Prod
# ##############################################################################
# # WEB PERFORMANCE #
# ##############################################################################
# ------------------------------------------------------------------------------
# | Compression |
# ------------------------------------------------------------------------------
<IfModule mod_deflate.c>
# Force compression for mangled headers.
# http://developer.yahoo.com/blogs/ydn/posts/2010/12/pushing-beyond-gzipping
<IfModule mod_setenvif.c>
<IfModule mod_headers.c>
SetEnvIfNoCase ^(Accept-EncodXng|X-cept-Encoding|X{15}|~{15}|-{15})$ ^((gzip|deflate)\s*,?\s*)+|[X~-]{4,13}$ HAVE_Accept-Encoding
RequestHeader append Accept-Encoding "gzip,deflate" env=HAVE_Accept-Encoding
</IfModule>
</IfModule>
# Compress all output labeled with one of the following MIME-types
# (for Apache versions below 2.3.7, you don't need to enable `mod_filter`
# and can remove the `<IfModule mod_filter.c>` and `</IfModule>` lines
# as `AddOutputFilterByType` is still in the core directives).
<IfModule mod_filter.c>
AddOutputFilterByType DEFLATE application/atom+xml \
application/javascript \
application/json \
application/rss+xml \
application/vnd.ms-fontobject \
application/x-font-ttf \
application/x-web-app-manifest+json \
application/xhtml+xml \
application/xml \
font/opentype \
image/svg+xml \
image/x-icon \
text/css \
text/html \
text/plain \
text/x-component \
text/xml
</IfModule>
</IfModule>
# ------------------------------------------------------------------------------
# | ETag removal |
# ------------------------------------------------------------------------------
# Since we're sending far-future expires headers (see below), ETags can
# be removed: http://developer.yahoo.com/performance/rules.html#etags.
# `FileETag None` is not enough for every server.
<IfModule mod_headers.c>
Header unset ETag
</IfModule>
FileETag None
# ------------------------------------------------------------------------------
# | Expires headers (for better cache control) |
# ------------------------------------------------------------------------------
# The following expires headers are set pretty far in the future. If you don't
# control versioning with filename-based cache busting, consider lowering the
# cache time for resources like CSS and JS to something like 1 week.
<IfModule mod_expires.c>
ExpiresActive on
ExpiresDefault "access plus 1 month"
# CSS
ExpiresByType text/css "access plus 1 year"
# Data interchange
ExpiresByType application/json "access plus 0 seconds"
ExpiresByType application/xml "access plus 0 seconds"
ExpiresByType text/xml "access plus 0 seconds"
# Favicon (cannot be renamed!)
ExpiresByType image/x-icon "access plus 1 week"
# HTML components (HTCs)
ExpiresByType text/x-component "access plus 1 month"
# HTML
ExpiresByType text/html "access plus 0 seconds"
# JavaScript
ExpiresByType application/javascript "access plus 1 year"
# Manifest files
ExpiresByType application/x-web-app-manifest+json "access plus 0 seconds"
ExpiresByType text/cache-manifest "access plus 0 seconds"
# Media
ExpiresByType audio/ogg "access plus 1 year"
ExpiresByType image/gif "access plus 1 year"
ExpiresByType image/jpeg "access plus 1 year"
ExpiresByType image/png "access plus 1 year"
ExpiresByType video/mp4 "access plus 1 year"
ExpiresByType video/ogg "access plus 1 year"
ExpiresByType video/webm "access plus 1 year"
# Web feeds
ExpiresByType application/atom+xml "access plus 1 hour"
ExpiresByType application/rss+xml "access plus 1 hour"
# Web fonts
ExpiresByType application/font-woff "access plus 1 year"
ExpiresByType application/vnd.ms-fontobject "access plus 1 year"
ExpiresByType application/x-font-ttf "access plus 1 year"
ExpiresByType font/opentype "access plus 1 year"
ExpiresByType image/svg+xml "access plus 1 year"
</IfModule>
# ------------------------------------------------------------------------------
# | Custom |
# ------------------------------------------------------------------------------
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>
<IfModule mod_php5.c>
php_value upload_max_filesize 100M
php_value post_max_size 100M
php_value memory_limit 100M
</IfModule>
# BEGIN WordPress
# The directives (lines) between "BEGIN WordPress" and "END WordPress" are
# dynamically generated, and should only be modified via WordPress filters.
# Any changes to the directives between these markers will be overwritten.
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
RewriteBase /
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>
# END WordPress
\ No newline at end of file
......@@ -605,3 +605,63 @@
INFO [543eb25e] Finished in 0.200 seconds with exit status 0 (successful).
INFO [fa9ae38a] Running si commonwell-web as tenzing_www@web-1
INFO [fa9ae38a] Finished in 4.210 seconds with exit status 0 (successful).
INFO ---------------------------------------------------------------------------
INFO START 2023-04-11 15:37:50 -0400 cap staging deploy
INFO ---------------------------------------------------------------------------
INFO [efeb0cc0] Running /usr/bin/env mkdir -p /tmp as tenzing_www@web-1
INFO [efeb0cc0] Finished in 2.203 seconds with exit status 0 (successful).
INFO Uploading /tmp/git-ssh-88c9bb4b01ff3e6c82bb.sh 100.0%
INFO [7e4e3825] Running /usr/bin/env chmod 700 /tmp/git-ssh-88c9bb4b01ff3e6c82bb.sh as tenzing_www@web-1
INFO [7e4e3825] Finished in 0.252 seconds with exit status 0 (successful).
INFO [2c1f8b1f] Running /usr/bin/env git ls-remote git@git.gotenzing.com:commonwell/broker-site.git HEAD as tenzing_www@web-1
INFO [2c1f8b1f] Finished in 1.288 seconds with exit status 0 (successful).
INFO [42b296c7] Running /usr/bin/env mkdir -p /var/www/html/production/commonwell-broker-staging/shared /var/www/html/production/commonwell-broker-staging/releases as tenzing_www@web-1
INFO [42b296c7] Finished in 0.241 seconds with exit status 0 (successful).
INFO [a3061dbc] Running /usr/bin/env mkdir -p /var/www/html/production/commonwell-broker-staging/shared/wp-content/wflogs /var/www/html/production/commonwell-broker-staging/shared/wp-content/uploads /var/www/html/production/commonwell-broker-staging/shared/wp-content/storage /var/www/html/production/commonwell-broker-staging/shared/wp-content/languages /var/www/html/production/commonwell-broker-staging/shared/wp-content/cache /var/www/html/production/commonwell-broker-staging/shared/wp-content/wp-rocket-config as tenzing_www@web-1
INFO [a3061dbc] Finished in 0.486 seconds with exit status 0 (successful).
INFO [369bfe60] Running /usr/bin/env mkdir -p /var/www/html/production/commonwell-broker-staging/shared as tenzing_www@web-1
INFO [369bfe60] Finished in 0.432 seconds with exit status 0 (successful).
INFO The repository mirror is at /var/www/html/production/commonwell-broker-staging/repo
INFO [a48088b2] Running /usr/bin/env git remote set-url origin git@git.gotenzing.com:commonwell/broker-site.git as tenzing_www@web-1
INFO [a48088b2] Finished in 0.609 seconds with exit status 0 (successful).
INFO [d410887d] Running /usr/bin/env git remote update --prune as tenzing_www@web-1
INFO [d410887d] Finished in 6.187 seconds with exit status 0 (successful).
INFO [2dbab57a] Running /usr/bin/env git clone -b master --recursive . /var/www/html/production/commonwell-broker-staging/releases/20230411193756 as tenzing_www@web-1
INFO [2dbab57a] Finished in 6.517 seconds with exit status 0 (successful).
INFO [35a70464] Running /usr/bin/env mkdir -p /var/www/html/production/commonwell-broker-staging/releases/20230411193756 as tenzing_www@web-1
INFO [35a70464] Finished in 0.409 seconds with exit status 0 (successful).
INFO [b0f34a26] Running /usr/bin/env git archive master | /usr/bin/env tar -x -f - -C /var/www/html/production/commonwell-broker-staging/releases/20230411193756 as tenzing_www@web-1
INFO [b0f34a26] Finished in 7.406 seconds with exit status 0 (successful).
INFO [fc3b53f8] Running /usr/bin/env echo "3a516de9d260884adc76f03793af1487a84a92a2" > REVISION as tenzing_www@web-1
INFO [fc3b53f8] Finished in 0.416 seconds with exit status 0 (successful).
INFO [9c028ca8] Running /usr/bin/env mkdir -p /var/www/html/production/commonwell-broker-staging/releases/20230411193756 as tenzing_www@web-1
INFO [9c028ca8] Finished in 0.235 seconds with exit status 0 (successful).
INFO [788d6f89] Running /usr/bin/env ln -s /var/www/html/production/commonwell-broker-staging/shared/.env /var/www/html/production/commonwell-broker-staging/releases/20230411193756/.env as tenzing_www@web-1
INFO [788d6f89] Finished in 0.240 seconds with exit status 0 (successful).
INFO [dd581560] Running /usr/bin/env ln -s /var/www/html/production/commonwell-broker-staging/shared/wordfence-waf.php /var/www/html/production/commonwell-broker-staging/releases/20230411193756/wordfence-waf.php as tenzing_www@web-1
INFO [dd581560] Finished in 0.365 seconds with exit status 0 (successful).
INFO [4f1e66e3] Running /usr/bin/env mkdir -p /var/www/html/production/commonwell-broker-staging/releases/20230411193756/wp-content as tenzing_www@web-1
INFO [4f1e66e3] Finished in 0.258 seconds with exit status 0 (successful).
INFO [816887f0] Running /usr/bin/env rm -rf /var/www/html/production/commonwell-broker-staging/releases/20230411193756/wp-content/wflogs as tenzing_www@web-1
INFO [816887f0] Finished in 0.184 seconds with exit status 0 (successful).
INFO [887d156f] Running /usr/bin/env ln -s /var/www/html/production/commonwell-broker-staging/shared/wp-content/wflogs /var/www/html/production/commonwell-broker-staging/releases/20230411193756/wp-content/wflogs as tenzing_www@web-1
INFO [887d156f] Finished in 0.339 seconds with exit status 0 (successful).
INFO [44103040] Running /usr/bin/env ln -s /var/www/html/production/commonwell-broker-staging/shared/wp-content/uploads /var/www/html/production/commonwell-broker-staging/releases/20230411193756/wp-content/uploads as tenzing_www@web-1
INFO [44103040] Finished in 0.754 seconds with exit status 0 (successful).
INFO [7c41a8ac] Running /usr/bin/env ln -s /var/www/html/production/commonwell-broker-staging/shared/wp-content/storage /var/www/html/production/commonwell-broker-staging/releases/20230411193756/wp-content/storage as tenzing_www@web-1
INFO [7c41a8ac] Finished in 0.221 seconds with exit status 0 (successful).
INFO [22f5db3c] Running /usr/bin/env ln -s /var/www/html/production/commonwell-broker-staging/shared/wp-content/languages /var/www/html/production/commonwell-broker-staging/releases/20230411193756/wp-content/languages as tenzing_www@web-1
INFO [22f5db3c] Finished in 0.272 seconds with exit status 0 (successful).
INFO [84a71134] Running /usr/bin/env ln -s /var/www/html/production/commonwell-broker-staging/shared/wp-content/cache /var/www/html/production/commonwell-broker-staging/releases/20230411193756/wp-content/cache as tenzing_www@web-1
INFO [84a71134] Finished in 0.346 seconds with exit status 0 (successful).
INFO [7fcf3c92] Running /usr/bin/env rm -rf /var/www/html/production/commonwell-broker-staging/releases/20230411193756/wp-content/wp-rocket-config as tenzing_www@web-1
INFO [7fcf3c92] Finished in 0.255 seconds with exit status 0 (successful).
INFO [e6f941d6] Running /usr/bin/env ln -s /var/www/html/production/commonwell-broker-staging/shared/wp-content/wp-rocket-config /var/www/html/production/commonwell-broker-staging/releases/20230411193756/wp-content/wp-rocket-config as tenzing_www@web-1
INFO [e6f941d6] Finished in 0.298 seconds with exit status 0 (successful).
INFO [e5d80462] Running cd '/var/www/html/production/commonwell-broker-staging/releases/20230411193756'; /usr/bin/php72 /home/tenzing_www/bin/composer install --no-dev --prefer-dist --no-interaction --quiet --optimize-autoloader as tenzing_www@web-1
INFO [e5d80462] Finished in 0.980 seconds with exit status 0 (successful).
INFO [bf4bd5d8] Running cd '/var/www/html/production/commonwell-broker-staging/releases/20230411193756/wp-content/themes/commonwell-broker'; /usr/bin/php72 /home/tenzing_www/bin/composer install --no-dev --prefer-dist --no-interaction --quiet --optimize-autoloader as tenzing_www@web-1
INFO [bf4bd5d8] Finished in 0.429 seconds with exit status 0 (successful).
INFO [02a17a2f] Running si commonwell-broker-staging as tenzing_www@web-1
INFO [02a17a2f] Finished in 32.207 seconds with exit status 0 (successful).
INFO [fca847e0] Running cd '/var/www/html/production/commonwell-broker-staging/releases/20230411193756/'; chmod -Rf 777 .htaccess wordfence-waf.php wp-content/advanced-cache.php wp-content/plugins/wordfence/ .user.ini as tenzing_www@web-1
......
{
"lockfileVersion": 1
}
# Apache < 2.3
<IfModule !mod_authz_core.c>
Order allow,deny
Deny from all
Satisfy All
</IfModule>
# Apache >= 2.3
<IfModule mod_authz_core.c>
Require all denied
</IfModule>
\ No newline at end of file
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{REQUEST_URI} \.php$
RewriteRule .* - [F,L,NC]
</IfModule>
<IfModule !mod_rewrite.c>
<FilesMatch "\.php$">
<IfModule mod_authz_core.c>
Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
Order deny,allow
Deny from all
</IfModule>
</FilesMatch>
</IfModule>
\ No newline at end of file
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{REQUEST_URI} \.php$
RewriteRule .* - [F,L,NC]
</IfModule>
<IfModule !mod_rewrite.c>
<FilesMatch "\.php$">
<IfModule mod_authz_core.c>
Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
Order deny,allow
Deny from all
</IfModule>
</FilesMatch>
</IfModule>
\ No newline at end of file
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{REQUEST_URI} \.php$
RewriteRule .* - [F,L,NC]
</IfModule>
<IfModule !mod_rewrite.c>
<FilesMatch "\.php$">
<IfModule mod_authz_core.c>
Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
Order deny,allow
Deny from all
</IfModule>
</FilesMatch>
</IfModule>
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{REQUEST_URI} \.php$
RewriteRule .* - [F,L,NC]
</IfModule>
<IfModule !mod_rewrite.c>
<FilesMatch "\.php$">
<IfModule mod_authz_core.c>
Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
Order deny,allow
Deny from all
</IfModule>
</FilesMatch>
</IfModule>
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{REQUEST_URI} \.php$
RewriteRule .* - [F,L,NC]
</IfModule>
<IfModule !mod_rewrite.c>
<FilesMatch "\.php$">
<IfModule mod_authz_core.c>
Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
Order deny,allow
Deny from all
</IfModule>
</FilesMatch>
</IfModule>
\ No newline at end of file
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{REQUEST_URI} \.php$
RewriteRule .* - [F,L,NC]
</IfModule>
<IfModule !mod_rewrite.c>
<FilesMatch "\.php$">
<IfModule mod_authz_core.c>
Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
Order deny,allow
Deny from all
</IfModule>
</FilesMatch>
</IfModule>
\ No newline at end of file
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{REQUEST_URI} \.php$
RewriteRule .* - [F,L,NC]
</IfModule>
<IfModule !mod_rewrite.c>
<FilesMatch "\.php$">
<IfModule mod_authz_core.c>
Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
Order deny,allow
Deny from all
</IfModule>
</FilesMatch>
</IfModule>
\ No newline at end of file
<IfModule mod_authz_core.c>
Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
Order deny,allow
Deny from all
</IfModule>
\ No newline at end of file