# BEGIN iThemes Security - Do not modify or remove this line # iThemes Security Config Details: 2 # Protect System Files - Security > Settings > System Tweaks > System Files Require all denied Order allow,deny Deny from all Require all denied Order allow,deny Deny from all Require all denied Order allow,deny Deny from all Require all denied Order allow,deny Deny from all # Disable Directory Browsing - Security > Settings > System Tweaks > Directory Browsing Options -Indexes RewriteEngine On # Protect System Files - Security > Settings > System Tweaks > System Files RewriteRule ^wp-admin/install\.php$ - [F] RewriteRule ^wp-admin/includes/ - [F] RewriteRule !^wp-includes/ - [S=3] RewriteRule ^wp-includes/[^/]+\.php$ - [F] RewriteRule ^wp-includes/js/tinymce/langs/.+\.php - [F] RewriteRule ^wp-includes/theme-compat/ - [F] RewriteCond %{REQUEST_FILENAME} -f RewriteRule (^|.*/)\.(git|svn)/.* - [F] # Disable PHP in Uploads - Security > Settings > System Tweaks > PHP in Uploads RewriteRule ^wp\-content/uploads/.*\.(?:php[1-7]?|pht|phtml?|phps)\.?$ - [NC,F] # Disable PHP in Plugins - Security > Settings > System Tweaks > PHP in Plugins RewriteRule ^wp\-content/plugins/.*\.(?:php[1-7]?|pht|phtml?|phps)\.?$ - [NC,F] # Disable PHP in Themes - Security > Settings > System Tweaks > PHP in Themes RewriteRule ^wp\-content/themes/.*\.(?:php[1-7]?|pht|phtml?|phps)\.?$ - [NC,F] # END iThemes Security - Do not modify or remove this line # BEGIN HMWP_RULES RewriteEngine On RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/6b2f044b68/(.*) /wp-content/plugins/better-variation-price-for-woocommerce/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/840cc34a20/(.*) /wp-content/plugins/breakdance/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/64661b86c7/(.*) /wp-content/plugins/woo-checkout-field-editor-pro/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/d64602aa00/(.*) /wp-content/plugins/continue-shopping-anywhere-for-woocommerce/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/d0f4711431/(.*) /wp-content/plugins/hide-my-wp/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/b1920a7dc4/(.*) /wp-content/plugins/internal-links/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/c419573b69/(.*) /wp-content/plugins/better-wp-security/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/f34c9a70dd/(.*) /wp-content/plugins/creame-whatsapp-me/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/24b95626cc/(.*) /wp-content/plugins/minmax-quantity-for-woocommerce/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/8415b7adeb/(.*) /wp-content/plugins/woocommerce-product-addon/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/f73730c2cd/(.*) /wp-content/plugins/seo-by-rank-math/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/c5f1ad48fc/(.*) /wp-content/plugins/sassy-social-share/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/814223bc91/(.*) /wp-content/plugins/seraphinite-accelerator-ext/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/1a60a0f6ed/(.*) /wp-content/plugins/google-site-kit/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/b063badb01/(.*) /wp-content/plugins/to-top/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/bf56e642ca/(.*) /wp-content/plugins/updraftplus/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/39d10ee62c/(.*) /wp-content/plugins/woocommerce/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/8505967a9f/(.*) /wp-content/plugins/woocommerce-payfast-gateway/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/560c75dc15/(.*) /wp-content/plugins/woocommerce-paypal-payments/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/b7458712f3/(.*) /wp-content/plugins/woocommerce-product-price-based-on-countries/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/19dd1e737e/(.*) /wp-content/plugins/woocommerce-price-based-country-pro-addon/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/c313883c11/(.*) /wp-content/plugins/wp-optimize/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/b58dda6f11/(.*) /wp-content/plugins/wp-optimize-premium/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/b9e1935f4e/(.*) /wp-content/plugins/wp-mail-logging/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/modules/(.*) /wp-content/plugins/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/views/734ed5396a/design.css$ /wp-content/themes/breakdance-zero/style.css [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/views/734ed5396a/(.*) /wp-content/themes/breakdance-zero/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/views/96f874eecb/design.css$ /wp-content/themes/twentytwentyone/style.css [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/views/96f874eecb/(.*) /wp-content/themes/twentytwentyone/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/views/(.*) /wp-content/themes/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?storage/(.*) /wp-content/uploads/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?core/(.*) /wp-content/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?lib/(.*) /wp-includes/$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?comments/(.*) /wp-comments-post.php$2 [QSA,L] RewriteRule ^([_0-9a-zA-Z-]+/)?writer/(.*) /author/$2 [QSA,L] # END HMWP_RULES # BEGIN HMWP_VULNERABILITY Header always unset x-powered-by Header always unset server ServerSignature Off Header set Strict-Transport-Security "max-age=15768000;includeSubdomains" Header set Content-Security-Policy "object-src 'none'" Header set X-XSS-Protection "1; mode=block" Header set X-Content-Type-Options "nosniff" # END HMWP_VULNERABILITY # BEGIN LSCACHE # END LSCACHE # BEGIN NON_LSCACHE # END NON_LSCACHE # BEGIN WordPress # The directives (lines) between "BEGIN WordPress" and "END WordPress" are # dynamically generated, and should only be modified via WordPress filters. # Any changes to the directives between these markers will be overwritten. RewriteEngine On RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}] RewriteBase / RewriteRule ^index\.php$ - [L] RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteRule . /index.php [L] # END WordPress # BEGIN seraphinite-accelerator # The directives (lines) between "BEGIN seraphinite-accelerator" and "END seraphinite-accelerator" are # dynamically generated, and should only be modified via WordPress filters. # Any changes to the directives between these markers will be overwritten. AddType image/avif .avif AddType image/webp .webp AddType application/font-woff2 .woff2 AddType application/x-font-opentype .otf ExpiresActive on ExpiresByType text/css "access plus 43200 minutes" ExpiresByType text/javascript "access plus 43200 minutes" ExpiresByType application/javascript "access plus 43200 minutes" ExpiresByType application/x-javascript "access plus 43200 minutes" ExpiresByType font/eot "access plus 43200 minutes" ExpiresByType font/opentype "access plus 43200 minutes" ExpiresByType font/woff "access plus 43200 minutes" ExpiresByType application/vnd.ms-fontobject "access plus 43200 minutes" ExpiresByType application/font-woff "access plus 43200 minutes" ExpiresByType application/font-woff2 "access plus 43200 minutes" ExpiresByType application/x-font-ttf "access plus 43200 minutes" ExpiresByType application/x-font-woff "access plus 43200 minutes" ExpiresByType image/vnd.microsoft.icon "access plus 43200 minutes" ExpiresByType image/x-icon "access plus 43200 minutes" ExpiresByType image/bmp "access plus 43200 minutes" ExpiresByType image/gif "access plus 43200 minutes" ExpiresByType image/jpeg "access plus 43200 minutes" ExpiresByType image/png "access plus 43200 minutes" ExpiresByType image/svg+xml "access plus 43200 minutes" ExpiresByType image/avif "access plus 43200 minutes" ExpiresByType image/webp "access plus 43200 minutes" ExpiresByType audio/ogg "access plus 43200 minutes" ExpiresByType video/mp4 "access plus 43200 minutes" ExpiresByType video/ogg "access plus 43200 minutes" ExpiresByType video/webm "access plus 43200 minutes" Header unset ETag FileETag None RewriteEngine On RewriteCond %{HTTP_ACCEPT} image\/webp RewriteCond %{REQUEST_FILENAME} \.(jpe|jpg|jpeg|png|gif|bmp|webp|avif)$ RewriteCond %{REQUEST_FILENAME}.webp -f RewriteRule ^(.*)\.(jpe|jpg|jpeg|png|gif|bmp|webp|avif)$ $1\.$2\.webp [QSA] Header merge Vary Accept Header merge Vary Accept AddOutputFilterByType DEFLATE text/plain text/css text/javascript application/javascript application/x-javascript application/json text/html text/xml application/atom+xml application/rss+xml application/xhtml+xml application/xml text/x-component application/vnd.ms-fontobject application/x-font-ttf font/eot font/opentype image/bmp image/svg+xml image/vnd.microsoft.icon image/x-icon RewriteEngine On RewriteCond %{HTTP:Accept-Encoding} (^|\W)gzip(\W|$) RewriteCond %{REQUEST_FILENAME} \.(css|js)$ RewriteCond %{REQUEST_FILENAME}.gz -f RewriteRule ^(.*)\.(css|js)$ $1\.$2\.gz [QSA] RewriteRule \.css\.gz$ - [T=text/css,E=no-gzip:1,E=no-brotli:1] RewriteRule \.js\.gz$ - [T=application/javascript,E=no-gzip:1,E=no-brotli:1] Header set Content-Encoding gzip Header merge Vary Accept-Encoding # END seraphinite-accelerator # BEGIN cPanel-generated php ini directives, do not edit # Manual editing of this file may result in unexpected behavior. # To make changes to this file, use the cPanel MultiPHP INI Editor (Home >> Software >> MultiPHP INI Editor) # For more information, read our documentation (https://go.cpanel.net/EA4ModifyINI) php_flag display_errors Off php_value max_execution_time 2000M php_value max_input_time 60 php_value max_input_vars 1000 php_value memory_limit 2000M php_value post_max_size 64M php_value session.gc_maxlifetime 1440 php_value session.save_path "/var/cpanel/php/sessions/ea-php82" php_value upload_max_filesize 64M php_flag zlib.output_compression Off php_flag display_errors Off php_value max_execution_time 2000M php_value max_input_time 60 php_value max_input_vars 1000 php_value memory_limit 2000M php_value post_max_size 64M php_value session.gc_maxlifetime 1440 php_value session.save_path "/var/cpanel/php/sessions/ea-php82" php_value upload_max_filesize 64M php_flag zlib.output_compression Off # END cPanel-generated php ini directives, do not edit # php -- BEGIN cPanel-generated handler, do not edit # Set the “ea-php82” package as the default “PHP” programming language. AddHandler application/x-httpd-ea-php82 .php .php8 .phtml # php -- END cPanel-generated handler, do not edit