.htaccess\u53ef\u4ee5\u505a\u5927\u91cf\u8303\u56f4\u7684\u4e8b\u60c5\uff0c\u5305\u62ec\uff1a\u6587\u4ef6\u5939\u5bc6\u7801\u4fdd\u62a4\u3001\u7528\u6237\u81ea\u52a8\u91cd\u65b0\u6307\u5411\u3001\u81ea\u5b9a\u4e49\u9519\u8bef\u9875\u9762\u3001\u53d8\u66f4\u4f60\u7684\u6587\u4ef6\u6269\u5c55\u540d\u3001\u5c4f\u853d\u7279\u5b9a\u7684\u7528\u6237IP\u5730\u5740\u3001\u53ea\u5141\u8bb8\u7279\u5b9a\u7684IP\u5730\u5740\u3001\u505c\u6b62\u76ee\u5f55\u8868\u4ee5\u53ca\u4f7f\u7528\u5176\u4ed6\u6587\u4ef6\u4f5c\u4e3aindex\u6587\u4ef6\uff0c\u7b49\u7b49\u2026\u2026<\/p>\n

1. Introduction \u4ecb\u7ecd<\/strong>
\n\u6587\u4ef6\u540d .htaccess \u5c5e\u6027 644 (RW-R\u2013R\u2013)
\nhtaccess\u4f1a\u5f71\u54cd\u5b83\u6240\u5728\u76ee\u5f55\u4e0b\u7684\u6240\u6709\u5b50\u76ee\u5f55
\n\u6ce8\u610f\u5927\u591a\u6570\u5185\u5bb9\u90fd\u8981\u6c42\u4fdd\u6301\u5728\u4e00\u884c\u4e4b\u5185\uff0c\u4e0d\u8981\u6362\u884c\uff0c\u5426\u5219\u4f1a\u5f15\u8d77\u9519\u8bef<\/p>\n

2. Error Documents \u9519\u8bef\u6587\u6863<\/strong>
\nOfficial document: ErrorDocument Directive
\nErrorDocument code document
\n\u4f8b\u5b50
\nErrorDocument 400 \/errors\/badrequest.html
\nErrorDocument 404 http:\/\/yoursite\/errors\/notfound.html
\nErrorDocument 401 \u201cAuthorization Required\u201d
\n(\u6ce8\u610f\u4e4b\u540e\u5185\u5bb9\u5982\u679c\u51fa\u73b0\u7684\u53cc\u5f15\u53f7\u9700\u8981\u8f6c\u4e49\u4e3a \u201d)
\n\u5e38\u89c1HTTP\u72b6\u6001\u7801
\nSuccessful Client Requests
\n200 OK
\n201 Created
\n202 Accepted
\n203 Non-Authorative Information
\n204 No Content
\n205 Reset Content
\n206 Partial Content
\nClient Request Redirected
\n300 Multiple Choices
\n301 Moved Permanently
\n302 Moved Temporarily
\n303 See Other
\n304 Not Modified
\n305 Use Proxy
\nClient Request Errors
\n400 Bad Request
\n401 Authorization Required
\n402 Payment Required (not used yet)
\n403 Forbidden
\n404 Not Found
\n405 Method Not Allowed
\n406 Not Acceptable (encoding)
\n407 Proxy Authentication Required
\n408 Request Timed Out
\n409 Conflicting Request
\n410 Gone
\n411 Content Length Required
\n412 Precondition Failed
\n413 Request Entity Too Long
\n414 Request URI Too Long
\n415 Unsupported Media Type
\nServer Errors
\n500 Internal Server Error
\n501 Not Implemented
\n502 Bad Gateway
\n503 Service Unavailable
\n504 Gateway Timeout
\n505 HTTP Version Not Supported<\/p>\n

3. Password Protection \u5bc6\u7801\u4fdd\u62a4<\/strong>
\nOfficial document: Authentication, Authorization and Access Control
\n\u5047\u8bbe\u5bc6\u7801\u6587\u4ef6\u4e3a.htpasswd
\nAuthUserFile \/usr\/local\/safedir\/.htpasswd (\u8fd9\u91cc\u5fc5\u987b\u4f7f\u7528\u5168\u8def\u5f84\u540d)
\nAuthName EnterPassword
\nAuthType Basic
\n\u4e24\u79cd\u5e38\u89c1\u9a8c\u8bc1\u65b9\u5f0f:
\nRequire user windix
\n(\u4ec5\u5141\u8bb8\u7528\u6237windix\u767b\u9646)
\nRequire valid-user
\n(\u6240\u6709\u5408\u6cd5\u7528\u6237\u90fd\u53ef\u767b\u9646)
\nTip: \u5982\u4f55\u751f\u6210\u5bc6\u7801\u6587\u4ef6
\n\u4f7f\u7528htpasswd\u547d\u4ee4(apache\u81ea\u5e26)
\n\u7b2c\u4e00\u6b21\u751f\u6210\u9700\u8981\u521b\u5efa\u5bc6\u7801\u6587\u4ef6
\nhtpasswd -c .htpasswd user1
\n\u4e4b\u540e\u589e\u52a0\u65b0\u7528\u6237
\nhtpasswd .htpasswd user2<\/p>\n

4. Enabling SSI Via htaccess \u901a\u8fc7htaccess\u5141\u8bb8SSI(Server Side Including)\u529f\u80fd<\/strong>
\nAddType text\/html .shtml
\nAddHandler server-parsed .shtml
\nOptions Indexes FollowSymLinks Includes
\nDirectoryIndex index.shtml index.html<\/p>\n

5. Blocking users by IP \u6839\u636eIP\u963b\u6b62\u7528\u6237\u8bbf\u95ee<\/strong>
\norder allow,deny
\ndeny from 123.45.6.7
\ndeny from 12.34.5. (\u6574\u4e2aC\u7c7b\u5730\u5740)
\nallow from all<\/p>\n

6. Blocking users\/sites by referrer \u6839\u636ereferrer\u963b\u6b62\u7528\u6237\/\u7ad9\u70b9\u8bbf\u95ee<\/strong>
\n\u9700\u8981mod_rewrite\u6a21\u5757
\n\u4f8b1. \u963b\u6b62\u5355\u4e00referrer: badsite.com
\nRewriteEngine on
\n# Options +FollowSymlinks
\nRewriteCond %{HTTP_REFERER} badsite.com [NC]
\nRewriteRule .* – [F]
\n\u4f8b2. \u963b\u6b62\u591a\u4e2areferrer: badsite1.com, badsite2.com
\nRewriteEngine on
\n# Options +FollowSymlinks
\nRewriteCond %{HTTP_REFERER} badsite1.com [NC,OR]
\nRewriteCond %{HTTP_REFERER} badsite2.com
\nRewriteRule .* – [F]
\n[NC] – \u5927\u5c0f\u5199\u4e0d\u654f\u611f(Case-insensite)
\n[F] – 403 Forbidden
\n\u6ce8\u610f\u4ee5\u4e0a\u4ee3\u7801\u6ce8\u91ca\u6389\u4e86\u201dOptions +FollowSymlinks\u201d\u8fd9\u4e2a\u8bed\u53e5\u3002\u5982\u679c\u670d\u52a1\u5668\u672a\u5728 httpd.conf \u7684 \u6bb5\u843d\u8bbe\u7f6e FollowSymLinks, \u5219\u9700\u8981\u52a0\u4e0a\u8fd9\u53e5\uff0c\u5426\u5219\u4f1a\u5f97\u5230\u201d500 Internal Server error\u201d\u9519\u8bef\u3002<\/p>\n

7. Blocking bad bots and site rippers (aka offline browsers) \u963b\u6b62\u574f\u722c\u866b\u548c\u79bb\u7ebf\u6d4f\u89c8\u5668<\/strong>
\n\u9700\u8981mod_rewrite\u6a21\u5757
\n\u574f\u722c\u866b? \u6bd4\u5982\u4e00\u4e9b\u6293\u5783\u573eemail\u5730\u5740\u7684\u722c\u866b\u548c\u4e0d\u9075\u5b88robots.txt\u7684\u722c\u866b(\u5982baidu?)
\n\u53ef\u4ee5\u6839\u636e HTTP_USER_AGENT \u6765\u5224\u65ad\u5b83\u4eec
\n(\u4f46\u662f\u8fd8\u6709\u66f4\u65e0\u803b\u7684\u5982\u201d\u4e2d\u641c zhongsou.com\u201d\u4e4b\u6d41\u628a\u81ea\u5df1\u7684agent\u8bbe\u7f6e\u4e3a \u201cMozilla\/4.0 (compatible; MSIE 5.5; Windows NT 5.0)\u201d \u592a\u6d41\u6c13\u4e86\uff0c\u5c31\u65e0\u80fd\u4e3a\u529b\u4e86)
\nRewriteEngine On
\nRewriteCond %{HTTP_USER_AGENT} ^BlackWidow [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Bot mailto:craftbot@yahoo.com [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^ChinaClaw [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Custo [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^DISCo [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Download Demon [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^eCatch [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^EirGrabber [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^EmailSiphon [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^EmailWolf [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Express WebPictures [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^ExtractorPro [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^EyeNetIE [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^FlashGet [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^GetRight [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^GetWeb! [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Go!Zilla [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Go-Ahead-Got-It [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^GrabNet [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Grafula [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^HMView [OR]
\nRewriteCond %{HTTP_USER_AGENT} HTTrack [NC,OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Image Stripper [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Image Sucker [OR]
\nRewriteCond %{HTTP_USER_AGENT} Indy Library [NC,OR]
\nRewriteCond %{HTTP_USER_AGENT} ^InterGET [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Internet Ninja [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^JetCar [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^JOC Web Spider [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^larbin [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^LeechFTP [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Mass Downloader [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^MIDown tool [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Mister PiX [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Navroad [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^NearSite [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^NetAnts [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^NetSpider [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Net Vampire [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^NetZIP [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Octopus [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Offline Explorer [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Offline Navigator [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^PageGrabber [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Papa Foto [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^pavuk [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^pcBrowser [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^RealDownload [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^ReGet [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^SiteSnagger [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^SmartDownload [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^SuperBot [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^SuperHTTP [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Surfbot [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^tAkeOut [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Teleport Pro [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^VoidEYE [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Web Image Collector [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Web Sucker [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^WebAuto [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^WebCopier [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^WebFetch [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^WebGo IS [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^WebLeacher [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^WebReaper [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^WebSauger [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Website eXtractor [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Website Quester [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^WebStripper [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^WebWhacker [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^WebZIP [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Wget [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Widow [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^WWWOFFLE [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Xaldon WebSpider [OR]
\nRewriteCond %{HTTP_USER_AGENT} ^Zeus
\nRewriteRule ^.* – [F,L]
\n[F] – 403 Forbidden
\n[L] – \u8fde\u63a5(Link)<\/p>\n

8. Change your default directory page \u6539\u53d8\u7f3a\u7701\u76ee\u5f55\u9875\u9762<\/strong>
\nDirectoryIndex index.html index.php index.cgi index.pl<\/p>\n

9. Redirects \u8f6c\u5411<\/strong>
\n\u5355\u4e2a\u6587\u4ef6
\nRedirect \/old_dir\/old_file.html http:\/\/yoursite.com\/new_dir\/new_file.html<\/a>
\n\u6574\u4e2a\u76ee\u5f55
\nRedirect \/old_dir http:\/\/yoursite.com\/new_dir<\/a>
\n\u6548\u679c: \u5982\u540c\u5c06\u76ee\u5f55\u79fb\u52a8\u4f4d\u7f6e\u4e00\u6837
\n http:\/\/yoursite.com\/old_dir<\/a> -> http:\/\/yoursite.com\/new_dir<\/a>
\n http:\/\/yoursite.com\/old_dir\/dir1\/test.html<\/a> -> http:\/\/yoursite.com\/new_dir\/dir1\/test.html<\/a>
\nTip: \u4f7f\u7528\u7528\u6237\u76ee\u5f55\u65f6Redirect\u4e0d\u80fd\u8f6c\u5411\u7684\u89e3\u51b3\u65b9\u6cd5
\n\u5f53\u4f60\u4f7f\u7528Apache\u9ed8\u8ba4\u7684\u7528\u6237\u76ee\u5f55\uff0c\u5982 http:\/\/mysite.com\/~windix<\/a>\uff0c\u5f53\u4f60\u60f3\u8f6c\u5411 http:\/\/mysite.com\/~windix\/jump<\/a>\u65f6\uff0c\u4f60\u4f1a\u53d1\u73b0\u4e0b\u9762\u8fd9\u4e2aRedirect\u4e0d\u5de5\u4f5c:
\nRedirect \/jump http:\/\/www.google.com<\/a>
\n\u6b63\u786e\u7684\u65b9\u6cd5\u662f\u6539\u6210
\nRedirect \/~windix\/jump http:\/\/www.google.com<\/a>
\n(source: .htaccess Redirect in \u201cSites\u201d not redirecting: why?
\n)<\/p>\n

10. Prevent viewing of .htaccess file \u9632\u6b62.htaccess\u6587\u4ef6\u88ab\u67e5\u770b<\/strong>
\norder allow,deny
\ndeny from all<\/p>\n

11. Adding MIME Types \u6dfb\u52a0 MIME \u7c7b\u578b<\/strong>
\nAddType application\/x-shockwave-flash swf
\nTips: \u8bbe\u7f6e\u7c7b\u578b\u4e3a application\/octet-stream \u5c06\u63d0\u793a\u4e0b\u8f7d<\/p>\n

12. Preventing hot linking of images and other file types \u9632\u76d7\u94fe<\/strong>
\n\u9700\u8981mod_rewrite\u6a21\u5757
\nRewriteEngine on
\nRewriteCond %{HTTP_REFERER} !^$
\nRewriteCond %{HTTP_REFERER} !^http:\/\/(www\/.)?mydomain.com\/.*$ [NC]
\nRewriteRule .(gif|jpg|js|css)$ – [F]
\n\u89e3\u6790:
\n\u82e5 HTTP_REFERER \u975e\u7a7a (\u6765\u6e90\u4e3a\u5176\u4ed6\u7ad9\u70b9\uff0c\u975e\u76f4\u63a5\u8fde\u63a5) \u5e76\u4e14
\n\u82e5 HTTP_REFERER \u975e(www.)mydomain.com\u5f00\u5934(\u5ffd\u7565\u5927\u5c0f\u5199[NC]) (\u6765\u6e90\u975e\u672c\u7ad9)
\n\u5bf9\u4e8e\u6240\u6709\u542b\u6709 .gif\/.jpg\/.js\/.css \u7ed3\u5c3e\u7684\u6587\u4ef6\u7ed9\u51fa 403 Forbidden \u9519\u8bef[F]
\n\u4e5f\u53ef\u6307\u5b9a\u54cd\u5e94\uff0c\u5982\u4e0b\u4f8b\u663e\u793a\u66ff\u6362\u56fe\u7247
\nRewriteRule .(gif|jpg)$ [R,L]
\n[R] – \u8f6c\u5411(Redirect)
\n[L] – \u8fde\u63a5(Link)<\/p>\n

13. Preventing Directory Listing \u9632\u6b62\u76ee\u5f55\u5217\u8868\u65f6\u663e\u793a<\/strong>
\nIndexIgnore *
\nIndexIgnore *.jpg *.gif
\nTips:
\n\u5141\u8bb8\u76ee\u5f55\u5217\u8868\u663e\u793a: Options +Indexes
\n\u7981\u6b62\u76ee\u5f55\u5217\u8868\u663e\u793a: Options -Indexes
\n\u663e\u793a\u63d0\u793a\u4fe1\u606f: \u9875\u9996 \u6587\u4ef6HEADER, \u9875\u5c3e \u6587\u4ef6README<\/p>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n","protected":false},"excerpt":{"rendered":"