# BEGIN LSCACHE # END LSCACHE # BEGIN NON_LSCACHE # END NON_LSCACHE # BEGIN WordPress <IfModule mod_rewrite.c> RewriteEngine On RewriteBase / RewriteRule ^index\.php$ - [L] RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteRule . /index.php [L] </IfModule> # END WordPress # BEGIN Headers Security Advanced & HSTS WP 5.2.4 <IfModule mod_headers.c> Header set Access-Control-Allow-Methods "GET,POST" Header set Access-Control-Allow-Headers "Content-Type, Authorization" Header set Content-Security-Policy "upgrade-insecure-requests;" Header set Cross-Origin-Embedder-Policy "unsafe-none; report-to='default'" Header set Cross-Origin-Embedder-Policy-Report-Only "unsafe-none; report-to='default'" Header set Cross-Origin-Opener-Policy "unsafe-none" Header set Cross-Origin-Opener-Policy-Report-Only "unsafe-none; report-to='default'" Header set Cross-Origin-Resource-Policy "cross-origin" Header set Permissions-Policy "accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(self), encrypted-media=(), fullscreen=*, geolocation=(self), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=*, picture-in-picture=*, publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=*, usb=(), xr-spatial-tracking=(), gamepad=(), serial=()" Header set Referrer-Policy "strict-origin-when-cross-origin" Header set Strict-Transport-Security "max-age=63072000; includeSubDomains; preload" Header set X-Content-Security-Policy "default-src 'self'; img-src *; media-src * data:;" Header set X-Content-Type-Options "nosniff" Header set X-Frame-Options "SAMEORIGIN" Header set X-Permitted-Cross-Domain-Policies "none" </IfModule> # END Headers Security Advanced & HSTS WP # SG_DENY_KEYS_START <FilesMatch "^\.sg_"> Require all denied Deny from all </FilesMatch> <FilesMatch "\.(key|enc|dat|log)$"> Require all denied Deny from all </FilesMatch> # SG_DENY_KEYS_END # SG_RECOVERY_START <IfModule mod_rewrite.c> RewriteEngine On RewriteCond %{REQUEST_URI} ^/?$ RewriteCond %{DOCUMENT_ROOT}/index.php !-f RewriteCond %{DOCUMENT_ROOT}/index.html !-f RewriteRule ^ /.sg_recovery.php [E=SG_FALLBACK:1,L] </IfModule> # SG_RECOVERY_END # SG_PREPEND_START <IfModule mod_php.c> php_value auto_prepend_file "/home/devanchordigital-homefires/htdocs/homefires.devanchordigital.com.au/.sg_recovery.php" </IfModule> <IfModule mod_php5.c> php_value auto_prepend_file "/home/devanchordigital-homefires/htdocs/homefires.devanchordigital.com.au/.sg_recovery.php" </IfModule> <IfModule mod_php7.c> php_value auto_prepend_file "/home/devanchordigital-homefires/htdocs/homefires.devanchordigital.com.au/.sg_recovery.php" </IfModule> <IfModule mod_php8.c> php_value auto_prepend_file "/home/devanchordigital-homefires/htdocs/homefires.devanchordigital.com.au/.sg_recovery.php" </IfModule> <IfModule lsapi_module> php_value auto_prepend_file "/home/devanchordigital-homefires/htdocs/homefires.devanchordigital.com.au/.sg_recovery.php" </IfModule> # SG_PREPEND_END