## WP-SpamShield - "/wp-spamshield/" .htaccess ##
## File Version 1.9.40
## - SECURITY: Control direct access to certain files.
## - SPEED: Compress files/data with gzip
## - SPEED: Set finely tuned cache control headers
## - Apache 2.2 and 2.4+ compatible
## - Using "Files ~" instead of "FilesMatch" for max compatibility with certain Apache-based servers (Litespeed, etc.)



## Order of processing - https://httpd.apache.org/docs/current/mod/
##	1 - mod_setenvif.c	- SetEnvIf		- https://httpd.apache.org/docs/current/mod/mod_setenvif.html
##	2 - mod_rewrite.c	- RewriteRule	- https://httpd.apache.org/docs/current/mod/mod_rewrite.html
##	3 - mod_env.c		- SetEnv		- https://httpd.apache.org/docs/current/mod/mod_env.html
##	4 - mod_headers.c	- Header set	- https://httpd.apache.org/docs/current/mod/mod_headers.html



<IfModule mod_headers.c>
	<Files ~ "^(.+)\.txt$">
		#Orig
		Header set Cache-Control "private, no-store, no-cache, must-revalidate, max-age=0, proxy-revalidate, s-maxage=0"
		Header set Surrogate-Control "no-cache, must-revalidate, max-age=0"
		Header set Pragma "no-cache"
		Header set Expires "Tue, 11 Sep 2001 12:46:40 GMT"
		Header unset Last-Modified
		Header unset ETag
		FileETag None
		#Based on New RSHCP
		Header always unset Cache-Control
		Header set Cache-Control max-age=43200
		Header merge Cache-Control must-revalidate
		Header merge Cache-Control s-maxage=43200
		Header merge Cache-Control proxy-revalidate
		Header always unset Surrogate-Control
		Header set Surrogate-Control max-age=43200
		Header merge Surrogate-Control must-revalidate
		Header always unset Cache-Control
		Header always unset Vary
		Header always set Vary Accept
		Header always merge Vary Accept-Encoding
		Header always merge Vary Cookie
		Header always merge Vary User-Agent
		Header always merge Vary *

	</Files>
</IfModule>

## COMPRESS DATA (GZIP)
<IfModule mod_deflate.c>
	SetOutputFilter DEFLATE
</IfModule>

## Apache 2.2 ##
<IfModule !mod_authz_core.c>
	Order Allow,Deny
	Allow from all
</IfModule>

## Apache 2.4+ ##
<IfModule mod_authz_core.c>
	Require all granted
</IfModule>

## Text and Language Files - Deny ##
<Files ~ "^(.+)\.(txt|mo|pot)$">
	<IfModule !mod_authz_core.c>
		Deny from all
	</IfModule>
	<IfModule mod_authz_core.c>
		Require all denied
	</IfModule>
</Files>

## jscripts.php and .js - Allow ##
# Ensure that .htaccess files other plugins placed in "/wp-content/" cannot prevent access
<Files ~ "(jscripts\.php|\.js)$">
	<IfModule !mod_authz_core.c>
		Allow from all
	</IfModule>
	<IfModule mod_authz_core.c>
		Require all granted
	</IfModule>
</Files>
