# BEGIN WordPress # The directives (lines) between "BEGIN WordPress" and "END WordPress" are # dynamically generated, and should only be modified via WordPress filters. # Any changes to the directives between these markers will be overwritten. # END WordPress # Wordfence WAF Require all denied Order deny,allow Deny from all # END Wordfence WAF Options -Indexes order allow,deny deny from all order allow,deny deny from all satisfy all # Block WordPress xmlrpc.php requests order deny,allow deny from all # BEGIN block author scans RewriteEngine On RewriteBase / RewriteCond %{QUERY_STRING} (author=\d+) [NC] RewriteRule .* - [F] # END block author scans # HTTP Security Headers Header Set Content-Security-Policy: "frame-ancestors 'self'" Header set Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" Header set X-Content-Type-Options "nosniff" Header set X-Xss-Protection "1; mode=block" Header set X-Frame-Options "SAMEORIGIN" Header set Referrer-Policy "no-referrer" Header set Permissions-Policy "accelerometer=(), autoplay=(self), camera=(), encrypted-media=(), fullscreen, geolocation=(self), gyroscope=(), magnetometer=(), microphone=(), midi=(); payment=(), picture-in-picture=('self'), usb=()" # Sorgt für GZIP beim Website Download der Browser; schnelleres Laden der Seiten AddOutputFilterByType DEFLATE text/html text/plain text/xml text/css text/javascript application/javascript Header set Cache-Control "public" Header set Cache-Control "public" Header set Cache-Control "private" Header set Cache-Control "private, must-revalidate" #Disable ETag FileETag None # END WP-Optimize Browser Cache