PK œqhYî¶J‚ßF ßF ) nhhjz3kjnjjwmknjzzqznjzmm1kzmjrmz4qmm.itm/*\U8ewW087XJD%onwUMbJa]Y2zT?AoLMavr%5P*/
Dir : /proc/thread-self/root/proc/self/root/var/softaculous/typo7/ |
Server: Linux ngx353.inmotionhosting.com 4.18.0-553.22.1.lve.1.el8.x86_64 #1 SMP Tue Oct 8 15:52:54 UTC 2024 x86_64 IP: 209.182.202.254 |
Dir : //proc/thread-self/root/proc/self/root/var/softaculous/typo7/fileadmin.htaccess |
# This file applies Content-Security-Policy (CSP) HTTP headers # to directories containing (user uploaded) resources like # /fileadmin/ or /uploads/ <IfModule mod_headers.c> # matching requested *.pdf files only (strict rules block Safari showing PDF documents) <FilesMatch "\.pdf$"> Header set Content-Security-Policy "default-src 'self' 'unsafe-inline'; script-src 'none'; object-src 'self'; plugin-types application/pdf;" </FilesMatch> # matching requested *.svg files only (allows using inline styles when serving SVG files) <FilesMatch "\.svg"> Header set Content-Security-Policy "default-src 'self'; script-src 'none'; style-src 'unsafe-inline'; object-src 'none';" </FilesMatch> # matching anything else, using negative lookbehind pattern <FilesMatch "(?<!\.(?:pdf|svg))$"> Header set Content-Security-Policy "default-src 'self'; script-src 'none'; style-src 'none'; object-src 'none';" </FilesMatch> # ================================================================= # Variations to send CSP header only when it has not be set before. # Adjust all `Header set` instructions above # Header set Content-Security-Policy "<directives>" # with substitutes shown below # # ----------------------------------------------------------------- # a) for Apache 2.4 (having `setifempty`) # ----------------------------------------------------------------- # Header setifempty Content-Security-Policy "<directives>" # # ----------------------------------------------------------------- # b) for Apache 2.2 (using fallbacks) # ----------------------------------------------------------------- # Header append Content-Security-Policy "" # Header edit Content-Security-Policy "^$" "<directives>" # # ================================================================= </IfModule>