D7net
Home
Console
Upload
information
Create File
Create Folder
About
Tools
:
/
home
/
balhit1357
/
balhit.ac.in
/
Filename :
.htaccess
back
Copy
Options +FollowSymLinks Options -Indexes <IfModule mod_rewrite.c> RewriteEngine On RewriteBase / # Force HTTPS #RewriteCond %{HTTPS} !=on [OR] #RewriteCond %{HTTP:X-Forwarded-Proto} !https RewriteCond %{HTTPS} off RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L] # Redirect index.html and index.php to root RewriteCond %{THE_REQUEST} /index\.(html|php) [NC] RewriteRule ^index\.(html|php)$ / [R=301,L] # WebP support RewriteCond %{HTTP_ACCEPT} image/webp [NC] RewriteCond %{DOCUMENT_ROOT}/$1.webp -f RewriteRule ^(.+)\.(jpe?g|png)$ $1.webp [T=image/webp,E=accept:1] RewriteCond %{HTTP_ACCEPT} image/webp [NC] RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME}\.webp -f RewriteRule ^(.*)\.(jpg|jpeg|png|gif)$ $1.$2.webp [T=image/webp,L] </IfModule> <Files ".ht*"> Require all denied </Files> <IfModule mod_mime.c> # Tell browsers that .webp files are image/webp AddType image/webp .webp </IfModule> # DEFLATE by extension AddOutputFilter DEFLATE css js html htm xml jpg png gif jpeg bmp swf webp <IfModule mod_deflate.c> AddOutputFilterByType DEFLATE x-font/woff AddOutputFilterByType DEFLATE x-font/ttf AddOutputFilterByType DEFLATE application/xml AddOutputFilterByType DEFLATE application/xhtml+xml AddOutputFilterByType DEFLATE application/rss+xml AddOutputFilterByType DEFLATE font/opentype AddOutputFilterByType DEFLATE font/ttf AddOutputFilterByType DEFLATE font/eot AddOutputFilterByType DEFLATE font/otf AddOutputFilterByType DEFLATE text/css AddOutputFilterByType DEFLATE text/x-component AddOutputFilterByType DEFLATE application/x-javascript AddOutputFilterByType DEFLATE application/javascript AddOutputFilterByType DEFLATE text/javascript AddOutputFilterByType DEFLATE text/x-js AddOutputFilterByType DEFLATE text/html AddOutputFilterByType DEFLATE text/richtext AddOutputFilterByType DEFLATE image/svg+xml AddOutputFilterByType DEFLATE text/plain AddOutputFilterByType DEFLATE text/xsd AddOutputFilterByType DEFLATE text/xsl AddOutputFilterByType DEFLATE text/xml AddOutputFilterByType DEFLATE image/bmp AddOutputFilterByType DEFLATE application/java AddOutputFilterByType DEFLATE application/msword AddOutputFilterByType DEFLATE application/vnd.ms-fontobject AddOutputFilterByType DEFLATE application/x-msdownload AddOutputFilterByType DEFLATE image/x-icon AddOutputFilterByType DEFLATE image/webp AddOutputFilterByType DEFLATE application/json AddOutputFilterByType DEFLATE application/vnd.ms-access AddOutputFilterByType DEFLATE application/vnd.ms-project AddOutputFilterByType DEFLATE application/x-font-otf AddOutputFilterByType DEFLATE application/vnd.ms-opentype AddOutputFilterByType DEFLATE application/vnd.oasis.opendocument.database AddOutputFilterByType DEFLATE application/vnd.oasis.opendocument.chart AddOutputFilterByType DEFLATE application/vnd.oasis.opendocument.formula AddOutputFilterByType DEFLATE application/vnd.oasis.opendocument.graphics AddOutputFilterByType DEFLATE application/vnd.oasis.opendocument.presentation AddOutputFilterByType DEFLATE application/vnd.oasis.opendocument.spreadsheet AddOutputFilterByType DEFLATE application/vnd.oasis.opendocument.text AddOutputFilterByType DEFLATE audio/ogg AddOutputFilterByType DEFLATE application/pdf AddOutputFilterByType DEFLATE application/vnd.ms-powerpoint AddOutputFilterByType DEFLATE image/svg+xml AddOutputFilterByType DEFLATE application/x-shockwave-flash AddOutputFilterByType DEFLATE image/tiff AddOutputFilterByType DEFLATE application/x-font-ttf AddOutputFilterByType DEFLATE application/vnd.ms-opentype AddOutputFilterByType DEFLATE audio/wav AddOutputFilterByType DEFLATE application/vnd.ms-write AddOutputFilterByType DEFLATE application/font-woff AddOutputFilterByType DEFLATE application/font-woff2 AddOutputFilterByType DEFLATE application/vnd.ms-excel </IfModule> <IfModule mod_brotli.c> AddOutputFilterByType BROTLI_COMPRESS text/html AddOutputFilterByType BROTLI_COMPRESS text/plain AddOutputFilterByType BROTLI_COMPRESS text/xml AddOutputFilterByType BROTLI_COMPRESS text/css AddOutputFilterByType BROTLI_COMPRESS application/xml AddOutputFilterByType BROTLI_COMPRESS application/xhtml+xml AddOutputFilterByType BROTLI_COMPRESS application/rss+xml AddOutputFilterByType BROTLI_COMPRESS application/javascript AddOutputFilterByType BROTLI_COMPRESS application/x-javascript AddOutputFilterByType BROTLI_COMPRESS application/x-httpd-php AddOutputFilterByType BROTLI_COMPRESS application/x-httpd-fastphp </IfModule> # Example for compressing static files <IfModule mod_headers.c> <FilesMatch "\.(css|js)$"> Header set Content-Encoding gzip </FilesMatch> </IfModule> <IfModule mod_expires.c> ExpiresActive On ExpiresDefault "access plus 1 month" ExpiresByType text/css A31536000 ExpiresByType text/x-component A31536000 ExpiresByType application/x-javascript A31536000 ExpiresByType application/javascript A31536000 ExpiresByType text/javascript A31536000 ExpiresByType text/x-js A31536000 ExpiresByType video/asf A31536000 ExpiresByType video/avi A31536000 ExpiresByType image/bmp A31536000 ExpiresByType application/java A31536000 ExpiresByType video/divx A31536000 ExpiresByType application/msword A31536000 ExpiresByType application/vnd.ms-fontobject A31536000 ExpiresByType application/x-msdownload A31536000 ExpiresByType image/gif A31536000 ExpiresByType application/x-gzip A31536000 ExpiresByType image/x-icon A31536000 ExpiresByType image/jpeg A31536000 ExpiresByType image/webp A31536000 ExpiresByType application/json A31536000 ExpiresByType application/vnd.ms-access A31536000 ExpiresByType audio/midi A31536000 ExpiresByType video/quicktime A31536000 ExpiresByType audio/mpeg A31536000 ExpiresByType video/mp4 A31536000 ExpiresByType video/mpeg A31536000 ExpiresByType application/vnd.ms-project A31536000 ExpiresByType application/x-font-otf A31536000 ExpiresByType application/vnd.ms-opentype A31536000 ExpiresByType application/vnd.oasis.opendocument.database A31536000 ExpiresByType application/vnd.oasis.opendocument.chart A31536000 ExpiresByType application/vnd.oasis.opendocument.formula A31536000 ExpiresByType application/vnd.oasis.opendocument.graphics A31536000 ExpiresByType application/vnd.oasis.opendocument.presentation A31536000 ExpiresByType application/vnd.oasis.opendocument.spreadsheet A31536000 ExpiresByType application/vnd.oasis.opendocument.text A31536000 ExpiresByType audio/ogg A31536000 ExpiresByType application/pdf A31536000 ExpiresByType image/png A31536000 ExpiresByType application/vnd.ms-powerpoint A31536000 ExpiresByType audio/x-realaudio A31536000 ExpiresByType image/svg+xml A31536000 ExpiresByType application/x-shockwave-flash A31536000 ExpiresByType application/x-tar A31536000 ExpiresByType image/tiff A31536000 ExpiresByType application/x-font-ttf A31536000 ExpiresByType application/vnd.ms-opentype A31536000 ExpiresByType audio/wav A31536000 ExpiresByType audio/wma A31536000 ExpiresByType application/vnd.ms-write A31536000 ExpiresByType application/font-woff A31536000 ExpiresByType application/font-woff2 A31536000 ExpiresByType application/vnd.ms-excel A31536000 ExpiresByType application/zip A31536000 ExpiresDefault "access 1 month" </IfModule> <IfModule mod_headers.c> <FilesMatch "\.(css|js|flv|ico|pdf|avi|mov|ppt|doc|mp3|wmv|wav|webp|jpg|png)$"> Header set Cache-Control "max-age=31536000, immutable" </FilesMatch> <FilesMatch "\.(css|js|woff|woff2|ttf|otf)$"> Header set Cache-Control "public, max-age=31536000, immutable" </FilesMatch> Header set Expires "max-age=2592000, public" Header unset ETag Header set Connection keep-alive FileETag None </IfModule> <IfModule mod_headers.c> Header append Vary Accept env=REDIRECT_accept </IfModule> # Protect from XSS and other injections <IfModule mod_rewrite.c> RewriteEngine On RewriteCond %{QUERY_STRING} (\.\.\/|\<|\>|\[|\]|\{|\}|\(|\)|\%0A|\%0D|\%27|\%3C|\%3E|\%00|\%22|\%25|\%26|\%23) [NC] RewriteRule ^(.*)$ - [F,L] </IfModule> <IfModule mod_rewrite.c> RewriteEngine On # Block SQL Injections RewriteCond %{QUERY_STRING} (union(.*)select|select(.*)from|concat|insert(.*)into|drop(.*)table) [NC] RewriteRule .* - [F] # Block XSS RewriteCond %{QUERY_STRING} (<|%3C).*script.*(>|%3E) [NC] RewriteCond %{QUERY_STRING} (\|%3E|\%3Cscript|\%3E) [NC] RewriteRule .* - [F] </IfModule> <IfModule mod_headers.c> Header always set X-Content-Type-Options "nosniff" Header set Referrer-Policy "strict-origin-when-cross-origin" Header set Permissions-Policy "geolocation=(), microphone=(), camera=(self)" Header set X-XSS-Protection "1; mode=block" Header always set X-Frame-Options "SAMEORIGIN" Header set Content-Security-Policy "default-src 'self' https://www.facebook.com https://www.googletagmanager.com https://*.getepay.in https://*.google.in https://*.gstatic.in https://connect.facebook.net https://*.facebook.in https://*.googleapis.in https://ssl.google-analytics.in https://www.youtube-nocookie.in https://www.youtube.in https://www.youtube.com https://youtu.be https://www.google.com; script-src 'self' https://static.cloudflareinsights.com https://www.googletagmanager.com https://ajax.googleapis.com https://*.getepay.in https://*.getepay.in https://maps.googleapis.com https://*.google.in https://www.google.com https://www.gstatic.com https://*.gstatic.in https://connect.facebook.net https://*.facebook.in https://ssl.google-analytics.in https://*.googleapis.in 'unsafe-inline' 'unsafe-eval'; style-src 'self' https://fonts.googleapis.com https://*.googleapis.in https://*.googleapis.in 'unsafe-inline';img-src 'self' https://www.facebook.com https://www.google.com https://maps.gstatic.com data:;font-src 'self' https://fonts.gstatic.com https://*.googleapis.in data: fonts.gstatic.in; connect-src 'self' https://www.google-analytics.com/ https://www.google.com https://ajax.googleapis.com https://*.getepay.in https://maps.googleapis.com https://fonts.gstatic.com https://fonts.googleapis.com https://*.facebook.in; media-src 'self' https://maps.gstatic.com data:;" Header always set Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" </IfModule>