.htaccess Security Options

Hey, just a heads-up that this content is based on an automatically imported version from our old CMS. If the formatting isn’t perfect, I’m sorry about that. Translation This original post is written in german 🇩🇪, a rough Translation: Example eqDKP: During WoW’s boom, many guilds appeared and vanished. Old script installs were left on servers. eqDKP (PHP user-managed DB for guild points) had a critical pre-1.3 RCE flaw. I found 4 vulnerable sites in 30 minutes and notified webmasters. .htaccess helps but isn’t a cure; keep systems updated. Next, I show useful .htaccess examples for security. ...

July 11, 2008 · solariz

Hotlink Protection via .htaccess Howto

Hey, just a heads-up that this content is based on an automatically imported version from our old CMS. If the formatting isn’t perfect, I’m sorry about that. Translation This original post is written in german 🇩🇪, a rough Translation: Hotlinking means other sites embed my images/videos, causing traffic without real visitors. I use Apache to block this. The browser requests files, not the foreign site, so IP blocking is useless. Solution: check the HTTP Referer; allow empty or my domain, deny others. Not perfect, some software strips referers. ...

March 20, 2008 · solariz