Joomla Preconfigured .htaccess Rwanda

An Apache webserver uses an htaccess for site specific configuration. A preconfigured htaccess file (htaccess.txt) is delivered with Joomla. It contains instructions to avoid common exploits and implements SEF urls. In addition it provides some settings that needs to be checked for your environment:
- Options +FollowSymLinks
- RewriteBase /

Activating htaccess.txt means merging an existing .htaccess with htaccess.txt and decide on the two settings mentioned above. Note: The active file is set in one of the httpd.conf files with: AccessFileName .htaccess. It defaults to .htaccess, which makes it hidden on a linux filesystem. No need to change that.

On the windows platform you might change it to: AccessFileName htaccess.ini, so you can edit it more easily. Don't use htaccess.txt here because when updating Joomla, it will be overwritten and changes will be lost.

Content of .htaccess

 # @version $Id: htaccess.txt 10492 2008-07-02 06:38:28Z ircmaxell $
 # @package Joomla
 # @copyright Copyright (C) 2005 - 2008 Open Source Matters. All rights reserved.
 # @license GNU/GPL
 # Joomla! is Free Software
 # The line just below this section: 'Options +FollowSymLinks' may cause problems
 # with some server configurations. It is required for use of mod_rewrite, but may already
 # be set by your server administrator in a way that dissallows changing it in
 # your .htaccess file. If using it causes your server to error out, comment it out (add # to
 # beginning of line), reload your site in your browser and test your sef url's. If they work,
 # it has been set by your server administrator and you do not need it set here.
 ## Can be commented out if causes errors, see notes above.
 Options +FollowSymLinks
 # mod_rewrite in use
 RewriteEngine On
 ########## Begin - Rewrite rules to block out some common exploits
 ## If you experience problems on your site block out the operations listed below
 ## This attempts to block the most common type of exploit `attempts` to Joomla!
 # Block out any script trying to set a mosConfig value through the URL
 RewriteCond %{QUERY_STRING} mosConfig_[a-zA-Z_]{1,21}(=|\%3D) [OR]
 # Block out any script trying to base64_encode crap to send via URL
 RewriteCond %{QUERY_STRING} base64_encode.*\(.*\) [OR]
 # Block out any script that includes a <script> tag in URL
 RewriteCond %{QUERY_STRING} (\<|%3C).*script.*(\>|%3E) [NC,OR]
 # Block out any script trying to set a PHP GLOBALS variable via URL
 RewriteCond %{QUERY_STRING} GLOBALS(=|\[|\%[0-9A-Z]{0,2}) [OR]
 # Block out any script trying to modify a _REQUEST variable via URL
 RewriteCond %{QUERY_STRING} _REQUEST(=|\[|\%[0-9A-Z]{0,2})
 # Send all blocked request to homepage with 403 Forbidden error!
 RewriteRule ^(.*)$ index.php [F,L]
 ########## End - Rewrite rules to block out some common exploits
 # Uncomment following line if your webserver's URL
 # is not directly related to physical file paths.
 # Update Your Joomla! Directory (just / for root)
 # RewriteBase /
 ########## Begin - Joomla! core SEF Section
 RewriteCond %{REQUEST_FILENAME} !-f
 RewriteCond %{REQUEST_FILENAME} !-d
 RewriteCond %{REQUEST_URI} !^/index.php
 RewriteCond %{REQUEST_URI} (/|\.php|\.html|\.htm|\.feed|\.pdf|\.raw|/[^.]*)$ [NC]
 RewriteRule (.*) index.php
 RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization},L]
 ########## End - Joomla! core SEF Section
  • 0 Users Found This Useful
Was this answer helpful?

Related Articles

How to upload a Joomla Website Rwanda

In this article I will explain the procedures involved in uploading a Joomla web site which you...

An Overview of the Different User Types of Joomla Rwanda

This tutorial will help you understand the four different user types of Joomla and what each can...

How to Log in to Your New Joomla Account Rwanda

This tutorial will teach you how to log into your new Joomla Account. Registering on a Joomla...

How to Register a New User Account in Joomla Rwanda

The purpose of this tutorial is to teach you how to register a new user account in Joomla....

How to Manage Articles in Joomla Rwanda

This tutorial will teach you how to manage articles in Joomla. You will need to be logged in to...