Solved

Permalinks question

Posted on 2014-11-06
7
181 Views
Last Modified: 2014-11-06
WordPress 4.0
Linux CentOS

Next silly question. It's about Permalinks.

When I set Permalinks to "Post Name" -- for example, http://ebwebwork.com/sample-post/ -- I lose the page. Meaning, I get a 404.

When I set Permalinks back to "default", the page returns.

Example: http://ebwebwork.com/services/

Is this something to do with .htaccess? Any idea why Permalinks gives me the 404 error?

Thank you very much for advice. =)

 Eric
0
Comment
Question by:Eric Bourland
  • 4
  • 3
7 Comments
 
LVL 70

Accepted Solution

by:
Jason C. Levine earned 500 total points
Comment Utility
It might be that WordPress is unable to write the proper rules in the .htaccess file.

Switch on permalinks.
Check the .htaccess file
Post the rules in there.
0
 
LVL 3

Author Comment

by:Eric Bourland
Comment Utility
Jason, good to hear from you. I switched on Permalinks; I downloaded my .htaccess file. Here is .htaccess:

# BEGIN iThemes Security
	# BEGIN Ban Users
		# Begin HackRepair.com Blacklist
		RewriteEngine on
		RewriteCond %{HTTP_USER_AGENT} ^$ [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^[Ww]eb[Bb]andit [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Acunetix [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^binlar [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^BlackWidow [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Bolt\ 0 [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Bot\ mailto:craftbot\@yahoo\.com [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^BOT\ for\ JCE [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^casper [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^checkprivacy [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^ChinaClaw [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^clshttp [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^cmsworldmap [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^comodo [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Custo [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Default\ Browser\ 0 [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^diavol [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^DIIbot [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^DISCo [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^dotbot [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Download\ Demon [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^eCatch [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^EirGrabber [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^EmailCollector [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^EmailSiphon [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^EmailWolf [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Express\ WebPictures [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^extract [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^ExtractorPro [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^EyeNetIE [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^feedfinder [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^FHscan [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^FlashGet [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^flicky [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^GetRight [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^GetWeb! [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Go-Ahead-Got-It [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^g00g1e [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Go!Zilla [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^grab [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^GrabNet [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Grafula [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^harvest [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^HMView [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^ia_archiver [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Image\ Stripper [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Image\ Sucker [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^InterGET [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Internet\ Ninja [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^InternetSeer\.com [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^jakarta [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Java [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^JetCar [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^JOC\ Web\ Spider [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^kanagawa [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^kmccrew [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^larbin [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^LeechFTP [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^libwww [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Mass\ Downloader [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Maxthon$ [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^microsoft\.url [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^MIDown\ tool [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^miner [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Mister\ PiX [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Mozilla\.*Indy [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Mozilla\.*NEWT [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^MSFrontPage [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Navroad [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^NearSite [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Net\ Vampire [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^NetAnts [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^NetSpider [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^NetZIP [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^nutch [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Octopus [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Offline\ Explorer [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Offline\ Navigator [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^PageGrabber [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Papa\ Foto [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^pavuk [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^pcBrowser [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^PeoplePal [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^planetwork [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^psbot [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^purebot [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^pycurl [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^RealDownload [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^ReGet [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Rippers\ 0 [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^SeaMonkey$ [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^sitecheck\.internetseer\.com [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^SiteSnagger [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^skygrid [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^SmartDownload [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^sucker [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^SuperBot [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^SuperHTTP [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Surfbot [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^tAkeOut [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Teleport\ Pro [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Toata\ dragostea\ mea\ pentru\ diavola [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^turnit [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^vikspider [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^VoidEYE [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Web\ Image\ Collector [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Web\ Sucker [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^WebAuto [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^WebCopier [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^WebFetch [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^WebGo\ IS [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^WebLeacher [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^WebReaper [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^WebSauger [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^WPScan [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Website\ eXtractor [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Website\ Quester [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^WebStripper [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^WebWhacker [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^WebZIP [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Wget [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Widow [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^WWW-Mechanize [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^WWWOFFLE [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Xaldon\ WebSpider [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Yandex [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^Zeus [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ^zmeu [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} AhrefsBot [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} CazoodleBot [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} discobot [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ecxi [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} GT::WWW [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} heritrix [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} HTTP::Lite [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} HTTrack [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ia_archiver [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} id-search [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} id-search\.org [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} IDBot [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} Indy\ Library [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} IRLbot [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ISC\ Systems\ iRc\ Search\ 2\.1 [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} LinksManager.com_bot [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} linkwalker [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} lwp-trivial [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} MFC_Tear_Sample [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} Microsoft\ URL\ Control [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} Missigua\ Locator [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} MJ12bot [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} panscient.com [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} PECL::HTTP [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} PHPCrawl [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} PleaseCrawl [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} SBIder [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} Snoopy [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} Steeler [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} URI::Fetch [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} urllib [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} Web\ Sucker [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} webalta [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} WebCollage [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} Wells\ Search\ II [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} WEP\ Search [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} zermelo [NC,OR]
		RewriteCond %{HTTP_USER_AGENT} ZyBorg [NC]
		RewriteRule ^.* - [F,L]
		# End HackRepair.com Blacklist, http://pastebin.com/u/hackrepair
		SetEnvIF REMOTE_ADDR "^107\.21\.236\.110$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^107\.21\.236\.110$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^107\.21\.236\.110$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^162\.251\.83\.43$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^162\.251\.83\.43$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^162\.251\.83\.43$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^184\.168\.64\.14$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^184\.168\.64\.14$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^184\.168\.64\.14$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^212\.90\.148\.101$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^212\.90\.148\.101$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^212\.90\.148\.101$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^216\.97\.231\.215$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^216\.97\.231\.215$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^216\.97\.231\.215$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^46\.19\.34\.200$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^46\.19\.34\.200$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^46\.19\.34\.200$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^50\.57\.126\.237$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^50\.57\.126\.237$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^50\.57\.126\.237$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^62\.60\.138\.142$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^62\.60\.138\.142$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^62\.60\.138\.142$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^64\.16\.202\.40$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^64\.16\.202\.40$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^64\.16\.202\.40$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^70\.32\.82\.53$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^70\.32\.82\.53$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^70\.32\.82\.53$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^78\.25\.214\.17$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^78\.25\.214\.17$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^78\.25\.214\.17$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^85\.128\.142\.24$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^85\.128\.142\.24$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^85\.128\.142\.24$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^50\.112\.127\.239$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^50\.112\.127\.239$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^50\.112\.127\.239$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^94\.23\.23\.172$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^94\.23\.23\.172$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^94\.23\.23\.172$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^91\.232\.21\.248$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^91\.232\.21\.248$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^91\.232\.21\.248$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^91\.109\.14\.48$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^91\.109\.14\.48$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^91\.109\.14\.48$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^60\.32\.152\.34$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^60\.32\.152\.34$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^60\.32\.152\.34$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^194\.149\.10\.39$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^194\.149\.10\.39$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^194\.149\.10\.39$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^82\.208\.58\.248$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^82\.208\.58\.248$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^82\.208\.58\.248$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^37\.187\.154\.174$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^37\.187\.154\.174$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^37\.187\.154\.174$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^202\.123\.84\.69$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^202\.123\.84\.69$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^202\.123\.84\.69$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^209\.212\.145\.10$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^209\.212\.145\.10$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^209\.212\.145\.10$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^64\.191\.4\.3$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^64\.191\.4\.3$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^64\.191\.4\.3$" DenyAccess
		
		SetEnvIF REMOTE_ADDR "^195\.211\.155\.156$" DenyAccess
		SetEnvIF X-FORWARDED-FOR "^195\.211\.155\.156$" DenyAccess
		SetEnvIF X-CLUSTER-CLIENT-IP "^195\.211\.155\.156$" DenyAccess
		
		order allow,deny
		deny from env=DenyAccess
		deny from 107.21.236.110
		deny from 162.251.83.43
		deny from 184.168.64.14
		deny from 212.90.148.101
		deny from 216.97.231.215
		deny from 46.19.34.200
		deny from 50.57.126.237
		deny from 62.60.138.142
		deny from 64.16.202.40
		deny from 70.32.82.53
		deny from 78.25.214.17
		deny from 85.128.142.24
		deny from 50.112.127.239
		deny from 94.23.23.172
		deny from 91.232.21.248
		deny from 91.109.14.48
		deny from 60.32.152.34
		deny from 194.149.10.39
		deny from 82.208.58.248
		deny from 37.187.154.174
		deny from 202.123.84.69
		deny from 209.212.145.10
		deny from 64.191.4.3
		deny from 195.211.155.156
		allow from all
		
	# END Ban Users
	# BEGIN Tweaks
		# Rules to block access to WordPress specific files
		<files .htaccess>
			Order allow,deny
			Deny from all
		</files>
		<files readme.html>
			Order allow,deny
			Deny from all
		</files>
		<files readme.txt>
			Order allow,deny
			Deny from all
		</files>
		<files install.php>
			Order allow,deny
			Deny from all
		</files>
		<files wp-config.php>
			Order allow,deny
			Deny from all
		</files>
		
		# Rules to disable XML-RPC
		<files xmlrpc.php>
			Order allow,deny
			Deny from all
		</files>
		
		# Rules to disable directory browsing
		Options -Indexes
		
		<IfModule mod_rewrite.c>
			RewriteEngine On
		
			# Rules to protect wp-includes
			RewriteRule ^wp-admin/includes/ - [F]
			RewriteRule !^wp-includes/ - [S=3]
			RewriteCond %{SCRIPT_FILENAME} !^(.*)wp-includes/ms-files.php
			RewriteRule ^wp-includes/[^/]+\.php$ - [F]
			RewriteRule ^wp-includes/js/tinymce/langs/.+\.php - [F]
			RewriteRule ^wp-includes/theme-compat/ - [F]
		
			# Rules to prevent php execution in uploads
			RewriteRule ^(.*)/uploads/(.*).php(.?) - [F]
		
			# Rules to block unneeded HTTP methods
			RewriteCond %{REQUEST_METHOD} ^(TRACE|DELETE|TRACK) [NC]
			RewriteRule ^(.*)$ - [F]
		
			# Rules to block suspicious URIs
			RewriteCond %{QUERY_STRING} \.\.\/ [NC,OR]
			RewriteCond %{QUERY_STRING} ^.*\.(bash|git|hg|log|svn|swp|cvs) [NC,OR]
			RewriteCond %{QUERY_STRING} etc/passwd [NC,OR]
			RewriteCond %{QUERY_STRING} boot\.ini [NC,OR]
			RewriteCond %{QUERY_STRING} ftp\:  [NC,OR]
			RewriteCond %{QUERY_STRING} http\:  [NC,OR]
			RewriteCond %{QUERY_STRING} https\:  [NC,OR]
			RewriteCond %{QUERY_STRING} (\<|%3C).*script.*(\>|%3E) [NC,OR]
			RewriteCond %{QUERY_STRING} mosConfig_[a-zA-Z_]{1,21}(=|%3D) [NC,OR]
			RewriteCond %{QUERY_STRING} base64_encode.*\(.*\) [NC,OR]
			RewriteCond %{QUERY_STRING} ^.*(\[|\]|\(|\)|<|>|ê|"|;|\?|\*|=$).* [NC,OR]
			RewriteCond %{QUERY_STRING} ^.*(&#x22;|&#x27;|&#x3C;|&#x3E;|&#x5C;|&#x7B;|&#x7C;).* [NC,OR]
			RewriteCond %{QUERY_STRING} ^.*(%24&x).* [NC,OR]
			RewriteCond %{QUERY_STRING} ^.*(127\.0).* [NC,OR]
			RewriteCond %{QUERY_STRING} ^.*(globals|encode|localhost|loopback).* [NC,OR]
			RewriteCond %{QUERY_STRING} ^.*(request|concat|insert|union|declare).* [NC]
			RewriteCond %{QUERY_STRING} !^loggedout=true
			RewriteCond %{QUERY_STRING} !^action=jetpack-sso
			RewriteCond %{QUERY_STRING} !^action=rp
			RewriteCond %{HTTP_COOKIE} !^.*wordpress_logged_in_.*$
			RewriteCond %{HTTP_REFERER} !^http://maps\.googleapis\.com(.*)$
			RewriteRule ^(.*)$ - [F]
		
			# Rules to block foreign characters in URLs
			RewriteCond %{QUERY_STRING} ^.*(%0|%A|%B|%C|%D|%E|%F).* [NC]
			RewriteRule ^(.*)$ - [F]
		
			# Rules to help reduce spam
			RewriteCond %{REQUEST_METHOD} POST
			RewriteCond %{REQUEST_URI} ^(.*)wp-comments-post\.php*
			RewriteCond %{HTTP_REFERER} !^(.*)ebwebwork.com.* 
			RewriteCond %{HTTP_REFERER} !^http://jetpack\.wordpress\.com/jetpack-comment/ [OR]
			RewriteCond %{HTTP_USER_AGENT} ^$
			RewriteRule ^(.*)$ - [F]
		</IfModule>
	# END Tweaks
# END iThemes Security

Open in new window

0
 
LVL 3

Author Comment

by:Eric Bourland
Comment Utility
I applied 644 to .htaccess .. and it looks like the Permalinks work now.

But I had to apply 644 manually ... is that usually the case?
0
Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 
LVL 70

Assisted Solution

by:Jason C. Levine
Jason C. Levine earned 500 total points
Comment Utility
But I had to apply 644 manually ... is that usually the case?

No, but it looks like the security plugin/system locked your .htaccess file down to prevent edits.  But WordPress needs to edit .htaccess to add permalink rewrites hence the issue.
0
 
LVL 3

Author Comment

by:Eric Bourland
Comment Utility
Do you think it is safe to leave .htaccess at 644?
0
 
LVL 70

Assisted Solution

by:Jason C. Levine
Jason C. Levine earned 500 total points
Comment Utility
Should be.
0
 
LVL 3

Author Closing Comment

by:Eric Bourland
Comment Utility
This is making more sense now. It seems like the iThemes plugin changed permissions on the .htaccess file.

Jason, thank you as always. Hope you're great. Take care,

Eric
0

Featured Post

Enabling OSINT in Activity Based Intelligence

Activity based intelligence (ABI) requires access to all available sources of data. Recorded Future allows analysts to observe structured data on the open, deep, and dark web.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Woocommerce Webservice 2 60
Wordpress data download 4 71
PHP time() function 12 62
Cross domain request in Javescript 9 25
If you are looking for plug-ins to add functions to your WordPress small business web site, take some time to read though this comprehensive list.  These are all the plugins I use for my customers WordPress web sites, as well as my own.  Be sure to …
Wordpress Horizontal Drop-Down Menu In this tutorial I will show you had to add a WordPress horizontal navigation menu to your theme. I have searched and searched for a good tutorial on creating a WordPress nav menu without adding a plug-in or us…
The purpose of this video is to demonstrate how to set up an RSS Feed on a WordPress Website. This will be demonstrated using a Windows 8 PC. Feedburner will be used for this demonstration. Go to your WordPress login page. This will look like the…
The purpose of this video is to demonstrate how to set up the permalinks on a WordPress Website. This will be demonstrated using a Windows 8 PC. Go to your WordPress login page. This will look like the following: mywebsite.com/wp-login.php : Go t…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

8 Experts available now in Live!

Get 1:1 Help Now