.htaccess

RewriteEngine on

# proc/self/environ? no way!
RewriteCond %{QUERY_STRING} proc/self/environ [OR]
 
# Block out any script trying to set a mosConfig value through the URL
RewriteCond %{QUERY_STRING} mosConfig_[a-zA-Z_]{1,21}(=|\%3D) [OR]
 
# Block out any script trying to base64_encode crap to send via URL
RewriteCond %{QUERY_STRING} base64_encode.*(.*) [OR]
 
# Block out any script that includes a <script> tag in URL
RewriteCond %{QUERY_STRING} (<|%3C).*script.*(>|%3E) [NC,OR]
 
# Block out any script trying to set a PHP GLOBALS variable via URL
RewriteCond %{QUERY_STRING} GLOBALS(=|[|\%[0-9A-Z]{0,2}) [OR]
 
# Block out any script trying to modify a _REQUEST variable via URL
RewriteCond %{QUERY_STRING} _REQUEST(=|[|\%[0-9A-Z]{0,2})
 
# Send all blocked request to homepage with 403 Forbidden error!
RewriteRule ^(.*)$ index.php [F,L]

RewriteCond %{SERVER_PORT} 80 
RewriteRule .* https://%{HTTP_HOST}%{REQUEST_URI} [R,L]

RewriteBase /
RewriteRule .*\.git/.* - [F]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d 
RewriteRule  ^([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/?$    /?uvar1=$1&uvar2=$2&uvar3=$3&uvar4=$4&uvar5=$5&uvar6=$6&uvar7=$7 [L,QSA]
RewriteRule  ^([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/?$    /?uvar1=$1&uvar2=$2&uvar3=$3&uvar4=$4&uvar5=$5&uvar6=$6 [L,QSA]
RewriteRule  ^([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/?$    /?uvar1=$1&uvar2=$2&uvar3=$3&uvar4=$4&uvar5=$5 [L,QSA]
RewriteRule  ^([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/?$    /?uvar1=$1&uvar2=$2&uvar3=$3&uvar4=$4 [L,QSA]
RewriteRule  ^([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/?$    /?uvar1=$1&uvar2=$2&uvar3=$3 [L,QSA]
RewriteRule  ^([a-zA-Z0-9\-\_]+)/([a-zA-Z0-9\-\_]+)/?$    /?uvar1=$1&uvar2=$2 [L,QSA]
RewriteRule  ^([a-zA-Z0-9\-\_]+)/?$    /?uvar1=$1 [L,QSA]


<IfModule mod_deflate.c>
  # html, xml, css, and js:
  AddOutputFilterByType DEFLATE text/html text/plain text/xml text/css application/x-javascript text/javascript application/javascript application/json
  # webfonts and svg:
  <FilesMatch "\.(ttf|otf|eot|svg)$" >
    SetOutputFilter DEFLATE
  </FilesMatch>
</IfModule>

<IfModule mod_expires.c>
	#Cache 
	ExpiresActive On
	ExpiresDefault A0

	<FilesMatch "\.(flv|ico|pdf|avi|mov|ppt|doc|mp3|wmv|wav)$">
	ExpiresDefault A29030400
	</FilesMatch>

	<FilesMatch "\.(jpg|jpeg|png|gif|swf)$">
	ExpiresDefault A29030400
	</FilesMatch>

	<FilesMatch "\.(txt|xml|js|css)$">
	ExpiresDefault A1209600"
	</FilesMatch>
</IfModule>