Last active
October 14, 2017 12:01
-
-
Save eveland/528ea2a878138190131b455d690f7bed to your computer and use it in GitHub Desktop.
WordCamp 2017
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # 6G FIREWALL/BLACKLIST | |
| # @ https://perishablepress.com/6g/ | |
| # Please remember this requires testing with YOUR site!! | |
| # 6G:[QUERY STRINGS] | |
| <IfModule mod_rewrite.c> | |
| RewriteEngine On | |
| RewriteCond %{QUERY_STRING} (eval\() [NC,OR] | |
| RewriteCond %{QUERY_STRING} (127\.0\.0\.1) [NC,OR] | |
| RewriteCond %{QUERY_STRING} ([a-z0-9]{2000,}) [NC,OR] | |
| RewriteCond %{QUERY_STRING} (javascript:)(.*)(;) [NC,OR] | |
| RewriteCond %{QUERY_STRING} (base64_encode)(.*)(\() [NC,OR] | |
| RewriteCond %{QUERY_STRING} (GLOBALS|REQUEST)(=|\[|%) [NC,OR] | |
| RewriteCond %{QUERY_STRING} (<|%3C)(.*)script(.*)(>|%3) [NC,OR] | |
| RewriteCond %{QUERY_STRING} (\\|\.\.\.|\.\./|~|`|<|>|\|) [NC,OR] | |
| RewriteCond %{QUERY_STRING} (boot\.ini|etc/passwd|self/environ) [NC,OR] | |
| RewriteCond %{QUERY_STRING} (thumbs?(_editor|open)?|tim(thumb)?)\.php [NC,OR] | |
| RewriteCond %{QUERY_STRING} (\'|\")(.*)(drop|insert|md5|select|union) [NC] | |
| RewriteRule .* - [F] | |
| </IfModule> | |
| # 6G:[REQUEST METHOD] | |
| <IfModule mod_rewrite.c> | |
| RewriteCond %{REQUEST_METHOD} ^(connect|debug|move|put|trace|track) [NC] | |
| RewriteRule .* - [F] | |
| </IfModule> | |
| # 6G:[REFERRERS] | |
| <IfModule mod_rewrite.c> | |
| RewriteCond %{HTTP_REFERER} ([a-z0-9]{2000,}) [NC,OR] | |
| RewriteCond %{HTTP_REFERER} (semalt.com|todaperfeita) [NC] | |
| RewriteRule .* - [F] | |
| </IfModule> | |
| # 6G:[REQUEST STRINGS] | |
| <IfModule mod_alias.c> | |
| RedirectMatch 403 (?i)([a-z0-9]{2000,}) | |
| RedirectMatch 403 (?i)(https?|ftp|php):/ | |
| RedirectMatch 403 (?i)(base64_encode)(.*)(\() | |
| RedirectMatch 403 (?i)(=\\\'|=\\%27|/\\\'/?)\. | |
| RedirectMatch 403 (?i)/(\$(\&)?|\*|\"|\.|,|&|&?)/?$ | |
| RedirectMatch 403 (?i)(\{0\}|\(/\(|\.\.\.|\+\+\+|\\\"\\\") | |
| RedirectMatch 403 (?i)(~|`|<|>|:|;|,|%|\\|\s|\{|\}|\[|\]|\|) | |
| RedirectMatch 403 (?i)/(=|\$&|_mm|cgi-|etc/passwd|muieblack) | |
| RedirectMatch 403 (?i)(&pws=0|_vti_|\(null\)|\{\$itemURL\}|echo(.*)kae|etc/passwd|eval\(|self/environ) | |
| RedirectMatch 403 (?i)\.(aspx?|bash|bak?|cfg|cgi|dll|exe|git|hg|ini|jsp|log|mdb|out|sql|svn|swp|tar|rar|rdf)$ | |
| RedirectMatch 403 (?i)/(^$|(wp-)?config|mobiquo|phpinfo|shell|sqlpatch|thumb|thumb_editor|thumbopen|timthumb|webshell)\.php | |
| </IfModule> | |
| # 6G:[USER AGENTS] | |
| <IfModule mod_setenvif.c> | |
| SetEnvIfNoCase User-Agent ([a-z0-9]{2000,}) bad_bot | |
| SetEnvIfNoCase User-Agent (archive.org|binlar|casper|checkpriv|choppy|clshttp|cmsworld|diavol|dotbot|extract|feedfinder|flicky|g00g1e|harvest|heritrix|httrack|kmccrew|loader|miner|nikto|nutch|planetwork|postrank|purebot|pycurl|python|seekerspider|siclab|skygrid|sqlmap|sucker|turnit|vikspider|winhttp|xxxyy|youda|zmeu|zune) bad_bot | |
| # Apache < 2.3 | |
| <IfModule !mod_authz_core.c> | |
| Order Allow,Deny | |
| Allow from all | |
| Deny from env=bad_bot | |
| </IfModule> | |
| # Apache >= 2.3 | |
| <IfModule mod_authz_core.c> | |
| <RequireAll> | |
| Require all Granted | |
| Require not env bad_bot | |
| </RequireAll> | |
| </IfModule> | |
| </IfModule> | |
| # 6G:[BAD IPS] | |
| <Limit GET HEAD OPTIONS POST PUT> | |
| Order Allow,Deny | |
| Allow from All | |
| # uncomment/edit/repeat next line to block IPs | |
| # Deny from 123.456.789 | |
| </Limit> |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Disable directory listing | |
| Options -Indexes |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Protect wp-config.php | |
| <Files wp-config.php> | |
| # Apache < 2.3 | |
| <IfModule !mod_authz_core.c> | |
| Order allow,deny | |
| Deny from all | |
| Satisfy All | |
| </IfModule> | |
| # Apache >= 2.3 | |
| <IfModule mod_authz_core.c> | |
| Require all denied | |
| </IfModule> | |
| </Files> |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // remove version from head | |
| remove_action('wp_head', 'wp_generator'); | |
| // remove version from rss | |
| add_filter('the_generator', '__return_empty_string'); | |
| // remove version from scripts and styles | |
| function shapeSpace_remove_version_scripts_styles($src) { | |
| if (strpos($src, 'ver=')) { | |
| $src = remove_query_arg('ver', $src); | |
| } | |
| return $src; | |
| } | |
| add_filter('style_loader_src', 'shapeSpace_remove_version_scripts_styles', 9999); | |
| add_filter('script_loader_src', 'shapeSpace_remove_version_scripts_styles', 9999); |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Disable WP_DEBUG mode, note debug mode default is off, you can also just delete these constants. | |
| define( 'WP_DEBUG', false ); | |
| // Disable Debug logging to the /wp-content/debug.log file | |
| define( 'WP_DEBUG_LOG', false ); | |
| // Disable display of errors and warnings | |
| define( 'WP_DEBUG_DISPLAY', false ); | |
| @ini_set( 'display_errors', 0 ); | |
| // Use dev versions of core JS and CSS files (only needed if you are modifying these core files) | |
| define( 'SCRIPT_DEBUG', false ); |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| define('DISALLOW_FILE_EDIT', true); |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // Enable WP_DEBUG mode | |
| define( 'WP_DEBUG', true ); | |
| // Enable Debug logging to the /wp-content/debug.log file | |
| define( 'WP_DEBUG_LOG', true ); | |
| // Disable display of errors and warnings | |
| define( 'WP_DEBUG_DISPLAY', false ); | |
| @ini_set( 'display_errors', 0 ); | |
| // Use dev versions of core JS and CSS files (only needed if you are modifying these core files) | |
| define( 'SCRIPT_DEBUG', true ); |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment