RewriteEngine On
RewriteCond %{HTTP_HOST} !^www\.
RewriteRule ^(.*)$ http://www.%{HTTP_HOST}/$1 [R=301,L]
# BEGIN iThemes Security - Do not modify or remove this line
# iThemes Security Config Details: 2
	# Protect System Files - Security > Settings > System Tweaks > System Files
	<files .htaccess>
		<IfModule mod_litespeed.c>
			Order allow,deny
			Deny from all
		</IfModule>
	</files>
	<files readme.html>
		<IfModule mod_litespeed.c>
			Order allow,deny
			Deny from all
		</IfModule>
	</files>
	<files readme.txt>
		<IfModule mod_litespeed.c>
			Order allow,deny
			Deny from all
		</IfModule>
	</files>
	<files wp-config.php>
		<IfModule mod_litespeed.c>
			Order allow,deny
			Deny from all
		</IfModule>
	</files>

	# Disable Directory Browsing - Security > Settings > System Tweaks > Directory Browsing
	Options -Indexes

	<IfModule mod_rewrite.c>
		RewriteEngine On

		# Protect System Files - Security > Settings > System Tweaks > System Files
		RewriteRule ^wp-admin/install\.php$ - [F]
		RewriteRule ^wp-admin/includes/ - [F]
		RewriteRule !^wp-includes/ - [S=3]
		RewriteRule ^wp-includes/[^/]+\.php$ - [F]
		RewriteRule ^wp-includes/js/tinymce/langs/.+\.php - [F]
		RewriteRule ^wp-includes/theme-compat/ - [F]
		RewriteCond %{REQUEST_FILENAME} -f
		RewriteRule (^|.*/)\.(git|svn)/.* - [F]

		# Disable PHP in Uploads - Security > Settings > System Tweaks > PHP in Uploads
		RewriteRule ^wp\-content/uploads/.*\.(?:php[1-7]?|pht|phtml?|phps)\.?$ - [NC,F]

		# Disable PHP in Plugins - Security > Settings > System Tweaks > PHP in Plugins
		RewriteRule ^wp\-content/plugins/.*\.(?:php[1-7]?|pht|phtml?|phps)\.?$ - [NC,F]

		# Disable PHP in Themes - Security > Settings > System Tweaks > PHP in Themes
		RewriteRule ^wp\-content/themes/.*\.(?:php[1-7]?|pht|phtml?|phps)\.?$ - [NC,F]
	</IfModule>
# END iThemes Security - Do not modify or remove this line

# BEGIN LSCACHE
## LITESPEED WP CACHE PLUGIN - Do not edit the contents of this block! ##
<IfModule LiteSpeed>
RewriteEngine on
CacheLookup on
RewriteRule .* - [E=Cache-Control:no-autoflush]
RewriteRule \.litespeed_conf\.dat - [F,L]

### marker CACHE RESOURCE start ###
RewriteRule wp-content/.*/[^/]*(responsive|css|js|dynamic|loader|fonts)\.php - [E=cache-control:max-age=3600]
### marker CACHE RESOURCE end ###

### marker FAVICON start ###
RewriteRule favicon\.ico$ - [E=cache-control:max-age=86400]
### marker FAVICON end ###

### marker DROPQS start ###
CacheKeyModify -qs:fbclid
CacheKeyModify -qs:gclid
CacheKeyModify -qs:utm*
CacheKeyModify -qs:_ga
### marker DROPQS end ###

</IfModule>
## LITESPEED WP CACHE PLUGIN - Do not edit the contents of this block! ##
# END LSCACHE
# BEGIN NON_LSCACHE
## LITESPEED WP CACHE PLUGIN - Do not edit the contents of this block! ##
## LITESPEED WP CACHE PLUGIN - Do not edit the contents of this block! ##
# END NON_LSCACHE
# BEGIN WP Hide & Security Enhancer
<IfModule mod_rewrite.c> 
RewriteEngine On 
RewriteBase / 
#WriteCheckString:1626781909_11418
RewriteRule .* - [E=HTTP_MOD_REWRITE:On]

RewriteRule ^thecoder/thecoderwanttoplaywithyouareyouready.css /wp-content/themes/seofy/style.css [L,QSA]

RewriteRule ^thecoder/(.+) /wp-content/themes/seofy/$1 [L,QSA]

RewriteRule ^locihup/(.+) /wp-content/plugins/akismet/$1 [L,QSA]
RewriteRule ^fdsfw4twert/(.+) /wp-content/plugins/boxzilla/$1 [L,QSA]
RewriteRule ^rw3rwer3/(.+) /wp-content/plugins/contact-form-7-skins/$1 [L,QSA]
RewriteRule ^febibub/(.+) /wp-content/plugins/contact-form-7/$1 [L,QSA]
RewriteRule ^jatemad/(.+) /wp-content/plugins/envato-market/$1 [L,QSA]
RewriteRule ^vupadov/(.+) /wp-content/plugins/js_composer/$1 [L,QSA]
RewriteRule ^4q24534/(.+) /wp-content/plugins/litespeed-cache/$1 [L,QSA]
RewriteRule ^cocopud/(.+) /wp-content/plugins/loginizer/$1 [L,QSA]
RewriteRule ^33436fsfs/(.+) /wp-content/plugins/seofy-core/$1 [L,QSA]
RewriteRule ^dasdawdweewew/(.+) /wp-content/plugins/wp-copy-protect-with-color-design/$1 [L,QSA]
RewriteRule ^romesir/(.+) /wp-content/plugins/youtube-embed-plus/$1 [L,QSA]
RewriteRule ^nenuvur/(.+) /wp-content/plugins/$1 [L,QSA]
RewriteCond %{ENV:REDIRECT_STATUS} ^$
RewriteRule ^wp-content/plugins(.+) /index.php?wph-throw-404 [L]

RewriteRule ^php_includes/(.+) /wp-includes/$1 [L,QSA]

RewriteRule ^dudavod/(.+) /wp-content/uploads/$1 [L,QSA]
RewriteCond %{ENV:REDIRECT_STATUS} ^$
RewriteRule ^wp-register.php /index.php?wph-throw-404 [L]
RewriteCond %{ENV:REDIRECT_STATUS} ^$
RewriteRule ^wp-signup.php /index.php?wph-throw-404 [L]
RewriteCond %{ENV:REDIRECT_STATUS} ^$
RewriteRule ^wp-activate.php /index.php?wph-throw-404 [L]

RewriteRule ^php_theocder/(.+) /wp-content/$1 [L,QSA]

RewriteCond %{REQUEST_URI} /fohuhup$
RewriteRule ^(.*)$ /fohuhup/ [R=301,L]
RewriteRule ^fohuhup(.*) /wp-admin$1 [L,QSA]
</IfModule> 

# END WP Hide & Security Enhancer

# BEGIN Really_Simple_SSL_SECURITY_HEADERS
<IfModule mod_headers.c>
Header always set X-XSS-Protection "1; mode=block" 
Header always set X-Content-Type-Options "nosniff" 
Header always set Referrer-Policy "no-referrer-when-downgrade" 
</IfModule>
# END Really_Simple_SSL_SECURITY_HEADERS

# BEGIN Really_Simple_SSL_CSP_Report_Only
<IfModule mod_headers.c>
Header always set Content-Security-Policy-Report-Only "upgrade-insecure-requests; default-src 'self' ; script-src 'self' 'unsafe-inline' https://ajax.googleapis.com ; script-src-elem 'self' 'unsafe-inline' https://gc.kis.v2.scr.kaspersky-labs.com https://ajax.googleapis.com ; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com ; style-src-elem 'self' 'unsafe-inline' https://fonts.googleapis.com ; img-src 'self' data: https://secure.gravatar.com data:;  font-src 'self' https://fonts.gstatic.com data:;  report-uri https://masonryom.org/wp-json/rsssl/v1/csp?rsssl_apitoken=1623273039" 
</IfModule>
# END Really_Simple_SSL_CSP_Report_Only
# BEGIN WordPress
# التعليمات (الأسطر) بين "BEGIN WordPress" و "END WordPress"
# تم إنشاؤها ديناميكيًا، ويجب تعديلها فقط من خلال مرشحات ووردبريس (WordPress Filters).
# أي تغييرات على التعليمات بين هذه العلامات سيتم الكتابة فوقها.
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
RewriteBase /
RewriteRule ^index\.php$ - [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>

# END WordPress
# BEGIN Security Block
# Block the include-only files.
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^wp-admin/includes/ - [F,L]
RewriteRule !^wp-includes/ - [S=3]
RewriteRule ^wp-includes/[^/]+\.php$ - [F,L]
RewriteRule ^wp-includes/js/tinymce/langs/.+\.php - [F,L]
RewriteRule ^wp-includes/theme-compat/ - [F,L]
</IfModule>
# Disable directory listing
Options All -Indexes
# Remove header with PHP version
Header always unset X-Powered-By
Header unset X-Powered-By
# END Security Block
# Wordfence WAF
<IfModule LiteSpeed>
php_value auto_prepend_file '/home/cairmvdu/puplic_html/masonryom.org/wordfence-waf.php'
</IfModule>
<IfModule lsapi_module>
php_value auto_prepend_file '/home/cairmvdu/puplic_html/masonryom.org/wordfence-waf.php'
</IfModule>
<Files ".user.ini">
<IfModule mod_authz_core.c>
	Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
	Order deny,allow
	Deny from all
</IfModule>
</Files>
# END Wordfence WAF
