#21324 – admin-tools's .htaccess and maximenu CK

Posted in ‘Akeeba Admin Tools for Joomla!’
This is a public ticket. Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.
Tuesday, 28 October 2014 07:43 CDT
I use admin-tools to create à .htacces file with defaults options.
In the generated file i am obliged to comment 6 of the following lines
othewise the 'maximenu CK' does not work properly.
Mybe is there a way to get 'maximenu CK' working an keep better security.

commented lines are designed by ################# in the following bloc.

##### Advanced server protection -- BEGIN
RewriteCond %{QUERY_STRING} \=PHP[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12} [NC]
RewriteRule .* - [F]
## Back-end protection
RewriteRule ^administrator/?$ - [L]
RewriteRule ^administrator/index\.(php|html?)$ - [L]
RewriteRule ^administrator/index[23]\.php$ - [L]
RewriteRule ^administrator/(components|modules|templates|images|plugins)/.*\.(jpe|jpg|jpeg|jp2|jpe2|png|gif|bmp|css|js|swf|html|mpg|mp3|mpeg|mp4|avi|wav|ogg|ogv|xls|xlsx|doc|docx|ppt|pptx|zip|rar|pdf|xps|txt|7z|svg|odt|ods|odp|flv|mov|htm|ttf|woff|eot|JPG|JPEG|PNG|GIF|CSS|JS|TTF|WOFF|EOT)$ - [L]
RewriteRule ^administrator/ - [F]
## Allow limited access for certain Joomla! system directories with client-accessible content
#################RewriteRule ^(components|modules|templates|images|plugins|media|libraries|media/jui/fonts)/.*\.(jpe|jpg|jpeg|jp2|jpe2|png|gif|bmp|css|js|swf|html|mpg|mp3|mpeg|mp4|avi|wav|ogg|ogv|xls|xlsx|doc|docx|ppt|pptx|zip|rar|pdf|xps|txt|7z|svg|odt|ods|odp|flv|mov|ico|htm|ttf|woff|eot|JPG|JPEG|PNG|GIF|CSS|JS|TTF|WOFF|EOT)$ - [L]
#################RewriteRule ^(components|modules|templates|images|plugins|media|libraries|media/jui/fonts)/ - [F]
## Disallow front-end access for certain Joomla! system directories (unless access to their files is allowed above)
RewriteRule ^includes/js/ - [L]
RewriteRule ^(cache|includes|language|logs|log|tmp)/ - [F]
RewriteRule ^(configuration\.php|CONTRIBUTING\.md|htaccess\.txt|joomla\.xml|LICENSE\.txt|phpunit\.xml|README\.txt|web\.config\.txt) - [F]
## Disallow access to rogue PHP files throughout the site, unless they are explicitly allowed
#################RewriteCond %{REQUEST_FILENAME} (\.php)$
#################RewriteCond %{REQUEST_FILENAME} !(/index[23]?\.php)$
#################RewriteCond %{REQUEST_FILENAME} -f
#################RewriteRule (.*\.php)$ - [F]
## Disallow access to htaccess.txt, php.ini and configuration.php-dist
RewriteRule ^(htaccess\.txt|configuration\.php-dist|php\.ini)$ - [F]
##### Advanced server protection -- END
Custom Fields
Which documentation pages did you read?
all
Which troubleshooter articles did you read?
all
Have you searched the tickets before posting?
Yes
Joomla! version (in x.y.z format)
3.3.6
PHP version (in x.y.z format)
5.4.4-14+deb7u12
MySQL/database version
5.5.38
Host (who is hosting your site, not your domain)
phpnet.org
Admin Tools version (x.y.z format)
3.3.1
Tuesday, 28 October 2014 08:20 CDT
The .htaccess Maker assumes that all PHP programs are called through the main index.php files, with the specifics passed as arguments. Any PHP program that is called directly will cause a problem under the default setup, usually a 403 error. You need to set these directly called PHP files (css, images, etc.) as exceptions.
You can diagnose what is being called and blocked with the instructions here: https://www.akeebabackup.com/documentation/troubleshooter/athtaccessexceptions.html. Once you have added the necessary exceptions, your menu can work with the .htaccess file.




Dale L. Brackin


Support Specialist






English: native






Please keep in mind my timezone and cultural differences when reading my replies. Thank you!






This ticket is closed, therefore read-only. You can no longer reply to it. If you need to provide more information, please open a new ticket and mention this ticket's number.

Support Information

Working hours: Typically we work Monday to Friday, 9am to 7pm Cyprus timezone (EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets, but we cannot respond to them, outside of our working hours.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!

Cookies Notification - Action required

This website uses cookies to provide user authentication and improve your user experience. Please indicate whether you consent to our site placing these cookies on your device. You can change your preference later, from the controls which will be made available to you at the bottom of every page of our site.