Create a gist now

Instantly share code, notes, and snippets.

@Nodws /.htaccess
Last active Apr 2, 2018

What would you like to do?
Htaccess snips
<FilesMatch "^(wp-config|wp-settings|wp-trackback|wp-comments-post|xmlrpc)\.php$">
Order allow,deny
Deny from all
Satisfy All
ErrorDocument 410 "Frankly, my dear, I don't give a damn.
#410 Gone with the wind.
<IfModule mod_rewrite.c>
RewriteEngine on
RewriteCond %{HTTP_REFERER} !^http://(.*)?yourserver\.com [NC]
RewriteCond %{REQUEST_URI} ^/(.*)?wp-login\.php(.*)$ [OR]
RewriteCond %{REQUEST_URI} ^/(.*)?wp-admin(.*)$
RewriteRule ^(.*)$ - [R=410,L]
ONLY allow access from, saving CPU, and server processing.
Create a Secret directory and INDEX file and have it redirect to /wp-admin
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule .* https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]
RewriteCond %{HTTP_HOST} !^www\. [NC]
RewriteRule .* https://www.%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

This comment has been minimized.

Show comment
Hide comment

Nodws Mar 15, 2015

pingback and comment spam


Nodws commented Mar 15, 2015

pingback and comment spam

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment