Get Paid to Participate - up to $1 per post!     Twitter     Facebook     Google+
Hosting Discussion
 

Hosting Discussion > Web Hosting Forums > Website Development & Design > .htaccess Whitelist for shared hosting
forgot password?



Reply


Old
  Post #1 (permalink)   02-14-2017, 07:44 AM
HD Amateur
 
Join Date: Feb 2017
Posts: 82

Status: danielpmc is offline
1. Read through the example and adjust as necessary.
2. Google any codes to get indepth info
3. These go in your cPanel/public_html/.htaccess or equivalent, if file does not exist create a file name it .htaccess (.htaccess starts with a dot) and set the permissions (chmod) to 644


Code:
RewriteEngine on

Options -Indexes

IndexIgnore *

IndexIgnore */*

DirectoryIndex index.php index.html index.shtml

#Renews every 30 days Uncomment below AFTER SSL (including Lets Encrypt) is installed
#Header always set Strict-Transport-Security: max-age=2592000

Header always set X-Xss-Protection "1; mode=block"

Header always set X-Content-Type-Options "nosniff"

Header always set X-Frame-Options "DENY"
#Header always set X-Frame-Options "SAMEORIGIN"

#Uncomment below if SSL is installed on domain (forces http tp https)
#RewriteCond %{SERVER_PORT} 80
#RewriteRule ^(.*)$ https://addyourdomainnamehere.com/$1 [R,L]

#Blocks uncommon requests. Error/access logs will show if anything legitimate is blocked. Remove word(s) as needed to unblock. 
RewriteCond %{REQUEST_METHOD} ^(CONNECT|DELETE|FLURP|HEAD|LABEL|LOCK|MOVE|OPTIONS|PRI|PROPFIND|PROPPATCH|PUT|TRACE)
RewriteRule .* - [F]

#Whitelist This only allows below to visit your site/server. You can add/remove/uncomment as many as you need.
Order Deny,Allow
Deny from all

#Browsers
SetEnvIfNoCase User-Agent .*ozilla/5.* good_bot
SetEnvIfNoCase User-Agent .*afar.* good_bot
SetEnvIfNoCase User-Agent edge good_bot
SetEnvIfNoCase User-Agent edge.* good_bot
SetEnvIfNoCase User-Agent .*edge.* good_bot
SetEnvIfNoCase User-Agent .*hrom.* good_bot
SetEnvIfNoCase User-Agent mac good_bot
SetEnvIfNoCase User-Agent mac.* good_bot
SetEnvIfNoCase User-Agent .*mac.* good_bot
SetEnvIfNoCase User-Agent msie good_bot
SetEnvIfNoCase User-Agent msie.* good_bot
SetEnvIfNoCase User-Agent .*msie.* good_bot
SetEnvIfNoCase User-Agent linu.* good_bot
SetEnvIfNoCase User-Agent .*linu.* good_bot
SetEnvIfNoCase User-Agent ipa.* good_bot
SetEnvIfNoCase User-Agent .*ipa.* good_bot
SetEnvIfNoCase User-Agent iphon.* good_bot
SetEnvIfNoCase User-Agent .*iphon.* good_bot
SetEnvIfNoCase User-Agent .*irefo.* good_bot
SetEnvIfNoCase User-Agent .*riden.* good_bot
SetEnvIfNoCase User-Agent ubunt.* good_bot
SetEnvIfNoCase User-Agent .*ubunt.* good_bot

SetEnvIfNoCase User-Agent .*aceboo.* good_bot
SetEnvIfNoCase User-Agent .*aho.* good_bot
SetEnvIfNoCase User-Agent api good_bot
SetEnvIfNoCase User-Agent api.* good_bot
SetEnvIfNoCase User-Agent .*api.* good_bot
SetEnvIfNoCase User-Agent bing good_bot
SetEnvIfNoCase User-Agent bing.* good_bot
SetEnvIfNoCase User-Agent .*bing.* good_bot
SetEnvIfNoCase User-Agent .*oogle.* good_bot
SetEnvIfNoCase User-Agent .*roi.* good_bot
SetEnvIfNoCase User-Agent slur.* good_bot
SetEnvIfNoCase User-Agent .*slur.* good_bot

#Uncomment below if E-Commerce, etc... is being blocked
#SetEnvIfNoCase User-Agent curl good_bot
#SetEnvIfNoCase User-Agent cur.* good_bot
#SetEnvIfNoCase User-Agent .*cur.* good_bot

#Uncomment below add IP if needed. (E-Commerce, Monitoring, DB, Remote, RSS, etc...)
#Allow from 123.123.1233.123
#Allow from 123.123.1233.123
#Allow from 123.123.1233.123

Allow from env=good_bot

#Below will show if somebody gets an error. Be decent with your words. Use google for error info.
#ErrorDocument 400 "Your-Words-Here"
#ErrorDocument 401 "Your-Words-Here"
#ErrorDocument 403 "Your-Words-Here"
#ErrorDocument 404 "Your-Words-Here"
#ErrorDocument 500 "Your-Words-Here"
#ErrorDocument 502 "Your-Words-Here"
Be safe out there!
__________________
Stone soup is flavored by its offerings of humanity.

Last edited by danielpmc : 02-14-2017 at 08:09 AM.
 
 
 
Reply

Thread Tools

New Post New Post   Old Post Old Post
Posting Rules:
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On
Sponsored By: