Migration apache 2.2 -> nginx

Feneck91

Maître Jedi
29 Octobre 2015
701
3
48
Bonjour à tous et à toutes...

Je poste ici car même si mon utilisation va être sous Synology / DSM, la problématique est plus générale et touche tous les NAS.
Donc, je commence, je suis donc sous Synology / DSM 6.1 / DS1815+.

Il semble que nginx soit automatiquement installé lorsque l'on installe WebStation.
J'ai donc réinstallé mon site web (comme ici, sous pbpBB) mais moi j'utilise SEO ce qui n'est pas le cas ici au vu des URLs.

J'ai installé Apache 2.4 mais mon site web ne fonctionnait pas, c'est en installant Apache 2.2 que j'ai fait tomber en marche mon site web.
Finalement, je le dis Apache 2.4 serait plus à jour, mais impossible de migrer mon fichier .htaccess, ça ne fonctionne pas !

Alors finalement, pourquoi pas migrer sous nginx qui est plus rapide, moins gourmand, je pourrais ensuite supprimer mes deux serveurs Apache qui tournent...

J'ai bien vu qu'il fallait modifier le fichier /etc/nginx/nginx.conf pour remplacer le fichier .htaccess, ce que je trouve d'ailleurs pas super pratique.
Et le fichier à migrer est le suivant :
Code:
#######################################################################################
# Block access to that file
<Files .htaccess>
	# Apache 2.2
	order allow,deny
	deny from all
	# Apache 2.4
	#Require all denied
</Files>
#######################################################################################
#Block listing of folder without index file
#######################################################################################
<IfModule mod_rewrite.c>
RewriteEngine On
	<IfModule mod_autoindex.c>
		IndexIgnore *
	</ifModule>
</ifModule>
#######################################################################################
#Block access to files which should not be displayed
#######################################################################################
<Files ~ '\.(inc|class|sql|ini|conf|exe|dll|bin|tpl|bkp|dat|c|h|py|spd|theme|module)$'>
	# Apache 2.2
	deny from all
	# Apache 2.4
	#Require all denied
</Files>
#######################################################################################
#Avoid display of Apache version
#######################################################################################
ServerSignature Off
#######################################################################################
#Deflate files to fasten the loading (setting proposed by http://support.netdna.com/tutorials/htaccess-examples/)
#######################################################################################
<IfModule mod_deflate.c>
	SetOutputFilter DEFLATE
	AddOutputFilterByType DEFLATE application/x-httpd-php text/html text/xml text/plain text/css text/javascript application/javascript application/x-javascript image/jpeg image/jpg image/png image/gif font/ttf font/eot font/otf
</IfModule>
<IfModule mod_headers.c>
	# properly handle requests coming from behind proxies
	Header append Vary User-Agent
</IfModule>
<IfModule mod_setenvif.c>
	<IfModule mod_deflate.c>
		# Properly handle old browsers that do not support compression
		BrowserMatch ^Mozilla/4 gzip-only-text/html
		BrowserMatch ^Mozilla/4\.0[678] no-gzip
		BrowserMatch \bMSIE !no-gzip !gzip-only-text/html
		# Explicitly exclude binary files from compression just in case
		SetEnvIfNoCase Request_URI \.(?:gif|jpe?g|png|pdf|swf|ico|zip|ttf|eot|svg)$ no-gzip
	</IfModule>
</IfModule>
<IfModule mod_rewrite.c>
	#######################################################################################
	# Block TRACE request to avoid risk of XST
	#######################################################################################
	RewriteCond %{REQUEST_METHOD} ^TRACE [NC]
	RewriteCond %{REMOTE_ADDR} !^192.54.144.229
	RewriteCond %{REMOTE_ADDR} !^88.175.179.251
	RewriteCond %{REMOTE_ADDR} !^88.181.134.103
	RewriteCond %{REMOTE_ADDR} !^88.187.112.170
	RewriteRule .* - [F]
	#######################################################################################
	#Block JCE Exploit
	#######################################################################################
	RewriteCond %{REQUEST_METHOD} (GET|POST) [NC]
	RewriteCond %{HTTP_USER_AGENT} BOT/0\.1\ \(BOT\ for\ JCE\)[NC]
	RewriteRule (.*) http://www.arthrodese-lombaire.fr/crawlprotect/noaccess/index.php?crawlprotectsite=1&crawlprotecttype=codeinjection&crawlprotecturl=JCE_Exploit   [L,QSA]
	#######################################################################################
	#Block PHP CGI Argument Injection Remote Exploit
	#######################################################################################
	RewriteCond %{REQUEST_METHOD} (GET|POST) [NC]
	RewriteCond %{QUERY_STRING} ^(.*)/?-d+allow_url_include%3d1+-d+auto_prepend_file%3dphp://input(.*)$ [NC,OR]
	RewriteCond %{HTTP_USER_AGENT} PHP\ CGI\ Argument\ Injection\ Exploiter[NC]
	RewriteRule (.*) http://www.arthrodese-lombaire.fr/crawlprotect/noaccess/index.php?crawlprotectsite=1&crawlprotecttype=codeinjection&crawlprotecturl=PHP_CGI_Argument_Injection_Remote_Exploit   [L,QSA]
	#######################################################################################
	#xss blocage
	#######################################################################################
	RewriteCond %{REQUEST_METHOD} (GET|POST) [NC]
	RewriteCond %{REMOTE_ADDR} !^192.54.144.229
	RewriteCond %{REMOTE_ADDR} !^88.175.179.251
	RewriteCond %{REMOTE_ADDR} !^88.181.134.103
	RewriteCond %{REMOTE_ADDR} !^88.187.112.170
	RewriteCond %{QUERY_STRING} !^(.*)mode=(.*)$ [NC]
	RewriteCond %{QUERY_STRING} !^(.*)variable_POST=(.*)$ [NC]
	RewriteCond %{QUERY_STRING} !^(.*)=http://www.arthrodese-lombaire.fr(.*)$ [NC]
	RewriteCond %{QUERY_STRING} !^(.*)=http%3A%2F%2Fwww.arthrodese-lombaire.fr(.*)$ [NC]
	RewriteCond %{QUERY_STRING} !^(.*)=http%253A%252F%252Fwww.arthrodese-lombaire.fr(.*)$ [NC]
	RewriteCond %{QUERY_STRING} !^(.*)=https://www.arthrodese-lombaire.fr(.*)$ [NC]
	RewriteCond %{QUERY_STRING} !^(.*)=https%3A%2F%2Fwww.arthrodese-lombaire.fr(.*)$ [NC]
	RewriteCond %{QUERY_STRING} !^(.*)=https%253A%252F%252Fwww.arthrodese-lombaire.fr(.*)$ [NC]
	RewriteCond %{QUERY_STRING} !^(.*)=ftp://www.arthrodese-lombaire.fr(.*)$ [NC]
	RewriteCond %{QUERY_STRING} !^(.*)=ftp%3A%2F%2Fwww.arthrodese-lombaire.fr(.*)$ [NC]
	RewriteCond %{QUERY_STRING} !^(.*)=ftp%253A%252F%252Fwww.arthrodese-lombaire.fr(.*)$ [NC]
	###########################Avoid issue with scripts used###############################
	#CrawlTrack
	RewriteCond %{REQUEST_URI} !^(.*)countdownload(.*)$ [NC]
	#CrawlTrack
	RewriteCond %{REQUEST_URI} !^(.*)keywordposition\.php(.*)$ [NC]
	#CrawlTrack
	RewriteCond %{QUERY_STRING} !^(.*)navig=(.*)period=(.*)site=(.*)crawler=(.*)graphpos=(.*)$ [NC]
	#######################################################################################
	RewriteCond %{QUERY_STRING} ^(.*)(%3D|=|%3A|%09)(.*)(h|%68|%48)(t|%74|%54)(t|%74|%54)(p|%70|%50)(s|%73|%53)(%3A|:)(/|%2F){2}(.*)$ [NC,OR]
	RewriteCond %{QUERY_STRING} ^(.*)(%3D|=|%3A|%09)(.*)(h|%68|%48)(t|%74|%54)(t|%74|%54)(p|%70|%50)(s|%73|%53)%3a(%3A|:)(/|%2F){2}(.*)$ [NC,OR]
	RewriteCond %{QUERY_STRING} ^(.*)(%3D|=|%3A|%09)(.*)(h|%68|%48)(t|%74|%54)(t|%74|%54)(p|%70|%50)(%3A|:)(/|%2F){2}(.*)$ [NC,OR]
	RewriteCond %{QUERY_STRING} ^(.*)(%3D|=|%3A|%09)(.*)(h|%68|%48)(t|%74|%54)(t|%74|%54)(p|%70|%50)%3a(%3A|:)(/|%2F){2}(.*)$ [NC,OR]
	RewriteCond %{QUERY_STRING} ^(.*)(%3D|=|%3A|%09)(.*)(f|%66|%46)(t|%74|%54)(p|%70|%50)(%3A|:)(/|%2F){2}(.*)$ [NC,OR]
	RewriteCond %{QUERY_STRING} ^(.*)(%3D|=|%3A|%09)(.*)(h|%68|%48)(t|%74|%54)%20(t|%74|%54)(p|%70|%50)(%3A|:)(/|%2F){2}(.*)$ [NC,OR]
	RewriteCond %{QUERY_STRING} ^(.*)(%3D|=|%3A|%09)(.*)(h|%68|%48)(t|%74|%54)(t|%74|%54)%20(p|%70|%50)(%3A|:)(/|%2F){2}(.*)$ [NC,OR]
	RewriteCond %{QUERY_STRING} ^(.*)(%3D|=|%3A|%09)(.*)(h|%68|%48)(t|%74|%54)(t|%74|%54)(p|%70|%50)%20(%3A|:)(/|%2F){2}(.*)$ [NC,OR]
	RewriteCond %{QUERY_STRING} ^(.*)(%3D|=|%3A|%09)(.*)(h|%68|%48)%20(t|%74|%54)(t|%74|%54)(p|%70|%50)(%3A|:)(/|%2F){2}(.*)$ [NC]
	RewriteRule (.*) http://www.arthrodese-lombaire.fr/crawlprotect/noaccess/index.php?crawlprotectsite=1&crawlprotecttype=xss&crawlprotecturl=%{REQUEST_URI}&crawlprotect2content   [L,QSA]
	#######################################################################################
	#Sql injection blocage
	#######################################################################################
	RewriteCond %{REQUEST_METHOD} (GET|POST) [NC]
	RewriteCond %{REMOTE_ADDR} !^192.54.144.229
	RewriteCond %{REMOTE_ADDR} !^88.175.179.251
	RewriteCond %{REMOTE_ADDR} !^88.181.134.103
	RewriteCond %{REMOTE_ADDR} !^88.187.112.170
	RewriteCond %{QUERY_STRING} ^(.*)(%20(S|%73|%53)(E|%65|%45)(L|%6C|%4C)(E|%65|%45)(C|%63|%43)(T|%74|%54)%20|\+(S|%73|%53)(E|%65|%45)(L|%6C|%4C)(E|%65|%45)(C|%63|%43)(T|%74|%54)\+|/\*(.*)(S|%73|%53)(E|%65|%45)(L|%6C|%4C)(E|%65|%45)(C|%63|%43)(T|%74|%54)\*/|%20(I|%69|%49)(N|%6E|%4E)(S|%73|%53)(E|%65|%45)(R|%72|%52)(T|%74|%54)%20|\+(I|%69|%49)(N|%6E|%4E)(S|%73|%53)(E|%65|%45)(R|%72|%52)(T|%74|%54)\+|/\*(.*)(I|%69|%49)(N|%6E|%4E)(S|%73|%53)(E|%65|%45)(R|%72|%52)(T|%74|%54)\*/|%20(U|%75|%55)(P|%70|%50)(D|%64|%44)(A|%61|%41)(T|%74|%54)(E|%65|%45)%20|\+(U|%75|%55)(P|%70|%50)(D|%64|%44)(A|%61|%41)(T|%74|%54)(E|%65|%45)\+|/\*(.*)(U|%75|%55)(P|%70|%50)(D|%64|%44)(A|%61|%41)(T|%74|%54)(E|%65|%45)\*/|%20(R|%72|%52)(E|%65|%45)(P|%70|%50)(L|%6C|%4C)(A|%61|%41)(C|%63|%43)(E|%65|%45)%20|\+(R|%72|%52)(E|%65|%45)(P|%70|%50)(L|%6C|%4C)(A|%61|%41)(C|%63|%43)(E|%65|%45)\+|/\*(.*)(R|%72|%52)(E|%65|%45)(P|%70|%50)(L|%6C|%4C)(A|%61|%41)(C|%63|%43)(E|%65|%45)\*/|%20(W|%77|%57)(H|%68|%48)(E|%65|%45)(R|%72|%52)(E|%65|%45)%20|\+(W|%77|%57)(H|%68|%48)(E|%65|%45)(R|%72|%52)(E|%65|%45)\+|/\*(.*)(W|%77|%57)(H|%68|%48)(E|%65|%45)(R|%72|%52)(E|%65|%45)\*/|%20(L|%6C|%4C)(I|%69|%49)(K|%6B|%4B)(E|%65|%45)%20|\+(L|%6C|%4C)(I|%69|%49)(K|%6B|%4B)(E|%65|%45)\+|/\*(.*)(L|%6C|%4C)(I|%69|%49)(K|%6B|%4B)(E|%65|%45)\*/|%20(O|%6F|%4F)(R|%72|%52)%20|\+(O|%6F|%4F)(R|%72|%52)\+|/\*(.*)(O|%6F|%4F)(R|%72|%52)\*/|%7C%7C)(.*)$ [NC]
	RewriteRule (.*) http://www.arthrodese-lombaire.fr/crawlprotect/noaccess/index.php?crawlprotectsite=1&crawlprotecttype=sqlinjection&crawlprotecturl=%{REQUEST_URI}&crawlprotect2content   [L,QSA]
	#######################################################################################
	#Code injection blocage
	#######################################################################################
	RewriteCond %{REQUEST_METHOD} (GET|POST) [NC]
	RewriteCond %{REMOTE_ADDR} !^192.54.144.229
	RewriteCond %{REMOTE_ADDR} !^88.175.179.251
	RewriteCond %{REMOTE_ADDR} !^88.181.134.103
	RewriteCond %{REMOTE_ADDR} !^88.187.112.170
	RewriteCond %{QUERY_STRING} ^(.*)(%3C|<)/?(s|%73|%53)(c|%63|%43)(r|%72|%52)(i|%69|%49)(p|%70|%50)(t|%74|%54)(.*)$ [NC,OR]
	RewriteCond %{QUERY_STRING} ^(.*)(%3D|=)?(j|%6A|%4A)(a|%61|%41)(v|%76|%56)(a|%61|%31)(s|%73|%53)(c|%63|%43)(r|%72|%52)(i|%69|%49)(p|%70|%50)(t|%74|%54)(%3A|:)(.*)$ [NC,OR]
	RewriteCond %{QUERY_STRING} ^(.*)(d|%64|%44)(o|%6F|%4F)(c|%63|%43)(u|%75|%55)(m|%6D|%4D)(e|%65|%45)(n|%6E|%4E)(t|%74|%54)\.(l|%6C|%4C)(o|%6F|%4F)(c|%63|%43)(a|%61|%41)(t|%74|%54)(i|%69|%49)(o|%6F|%4F)(n|%6E|%4E)\.(h|%68|%48)(r|%72|%52)(e|%65|%45)(f|%66|%46)(.*)$ [OR]
	RewriteCond %{QUERY_STRING} ^(.*)(b|%62|%42)(a|%61|%41)(s|%73|%53)(e|%65|%45)(6|%36)(4|%34)(_|%5F)(e|%65|%45)(n|%6E|%4E)(c|%63|%43)(o|%6F|%4F)(d|%64|%44)(e|%65|%45)(.*)$ [OR]
	RewriteCond %{QUERY_STRING} ^(.*)(G|%67|%47)(L|%6C|%4C)(O|%6F|%4F)(B|%62|%42)(A|%61|%41)(L|%6C|%4C)(S|%73|%53)(=|[|%[0-9A-Z]{0,2})(.*)$ [OR]
	RewriteCond %{QUERY_STRING} ^(.*)(_|%5F)(R|%72|%52)(E|%65|%45)(Q|%71|%51)(U|%75|%55)(E|%65|%45)(S|%73|%53)(T|%74|%54)(=|[|%[0-9A-Z]{0,2})(.*)$ [OR]
	RewriteCond %{REQUEST_URI} ^(.*)(_|%5F)(v|%76|%56)(t|%74|%54)(i|%69|%49)(.*)$ [OR]
	RewriteCond %{REQUEST_URI} ^(.*)(M|%4D)(S|%53)(O|%4F)(f|%66)(f|%66)(i|%69)(c|%63)(e|%65)(.*)$ [OR]
	RewriteCond %{QUERY_STRING} ^(.*)(/|%2F)(e|%65)(t|%74)(c|%63)(/|%2F)(p|%70)(a|%61)(s|%73)(s|%73)(w|%77)(d|%64)(.*)$ [OR]
	RewriteCond %{REQUEST_URI} ^(.*)(S|%53)(h|%68)(e|%65)(l|%6C)(l|%6C)(A|%41)(d|%64)(r|%72)(e|%65)(s|%73)(i|%69).(T|%54)(X|%58)(T|%54)(.*)$ [OR]
	RewriteCond %{REQUEST_URI} ^(.*)\[(e|%65)(v|%76)(i|%69)(l|%6C)(_|%5F)(r|%72)(o|%6F)(o|%6F)(t|%74)\]?(.*)$ [OR]
	RewriteCond %{QUERY_STRING} ^(.*)\.\./\.\./\.\./(.*)$ [OR]
	RewriteCond %{QUERY_STRING} ^(.*)(/|%2F)(p|%70)(r|%72)(o|%6F)(c|%63)(/|%2F)(s|%73)(e|%65)(l|%C)(f|%66)(/|%2F)(e|%65)(n|%6E)(v|%76)(i|%69)(r|%72)(o|%6F)(n|%6E)(.*)$
	RewriteRule (.*) http://www.arthrodese-lombaire.fr/crawlprotect/noaccess/index.php?crawlprotectsite=1&crawlprotecttype=codeinjection&crawlprotecturl=%{REQUEST_URI}&crawlprotect2content   [L,QSA]
	#######################################################################################
	#Bad bot and site copier blocage
	#######################################################################################
	RewriteCond %{HTTP_USER_AGENT} @nonymouse|ADSARobot|Advanced\ Email\ Extractor|ah-ha|aktuelles|almaden|amzn_assoc|Anarchie|Art-Online|AspiWeb|ASPSeek|ASSORT|ATHENS|Atomz|attach|attache|autoemailspider|BackWeb|Bandit|BatchFTP|bdfetch|big\.brother|BlackWidow|bmclient|Boston\ Project|Bot\ mailto:craftbot@yahoo\.com|BravoBrian\ SpiderEngine\ MarcoPolo|Buddy|Bullseye|bumblebee|capture|CherryPicker|ChinaClaw|CICC|clipping|Crescent\ Internet\ ToolPack|cURL|Custo|cyberalert|Deweb|diagem|Digger|Digimarc|DIIbot|DirectUpdate|DISCo|Drip|DSurf15a|DTS\.Agent|EasyDL|eCatch|echo\ extense|ecollector|efp@gmx\.net|EirGrabber|Email\ Extractor|EmailCollector|EmailSiphon|EmailWolf|Express\ WebPictures|ExtractorPro|EyeNetIE|fastlwspider|FavOrg|Favorites\ Sweeper|Fetch\ API\ Request|FEZhead|FileHound|FlashGet|FlickBot|fluffy|frontpage|GalaxyBot|Generic|Getleft|GetSmart|GetWeb!|GetWebPage|gigabaz|Girafabot|Go!Zilla|Go-Ahead-Got-It|GornKer|Grabber|GrabNet|Grafula|Green\ Research|Harvest|hhjhj@yahoo|hloader|HMView|HomePageSearch|HTTP\ agent|http\ generic|HTTPConnect|httpdown|HTTrack|IBM_Planetwide|Image\ Stripper|Image\ Sucker|imagefetch|IncyWincy|Indy\ Library|informant|Ingelin|InterGET|Internet\ Ninja|InternetLinkAgent|InternetSeer\.com|iOpus|IPiumBot\ laurion(dot)com|Iria|Irvine|Jakarta|JBH*Agent|JetCar|JustView|Kapere|KWebGet|Lachesis|larbin|LeechFTP|LexiBot|lftp|libwww|likse|Link*Sleuth|LINKS\ ARoMATIZED|LinkWalker|lwp-trivial|Mac\ Finder|Mag-Net|Magnet|Mass\ Downloader|MCspider|MemoWeb|Microsoft\ URL\ Control|MIDown\ tool|minibot\(NaverRobot\)|Missigua\ Locator|Mister\ PiX|MMMtoCrawl\/UrlDispatcherLLL|MSProxy|multithreaddb|nationaldirectory|Navroad|NearSite|Net\ Vampire|NetAnts|NetCarta|netcraft|netfactual|NetMechanic|netprospector|NetResearchServer|NetSpider|NetZIP|NEWT|nicerspro|NPBot|Octopus|Offline\ Explorer|Offline\ Navigator|OpaL|Openfind|OpenTextSiteCrawler|OutWit|PackRat|PageGrabber|Papa\ Foto|pavuk|pcBrowser|PersonaPilot|PingALink|Pockey|Program\ Shareware|psbot|PSurf|puf|Pump|PushSite|QRVA|QuepasaCreep|RealDownload|Reaper|Recorder|ReGet|replacer|RepoMonkey|Robozilla|Rover|RPT-HTTPClient|Rsync|SearchExpress|searchhippo|searchterms\.it|Second\ Street\ Research|Shai|sitecheck|SiteMapper|SiteSnagger|SlySearch|SmartDownload|snagger|SpaceBison|Spegla|SpiderBot|SqWorm|Star\ Downloader|Stripper|Sucker|SuperBot|SuperHTTP|Surfbot|SurfWalker|Szukacz|tAkeOut|tarspider|Teleport\ Pro|Telesoft|Templeton|traffixer|TrueRobot|TuringOS|TurnitinBot|TV33_Mercator|UIowaCrawler|URL_Spider_Pro|UtilMind|Vacuum|vagabondo|vayala|visibilitygap|vobsub|VoidEYE|vspider|w3mir|Web\ Data\ Extractor|Web\ Downloader|Web\ Image\ Collector|Web\ Sucker|web\.by\.mail|WebAuto|webbandit|Webclipping|webcollage|webcollector|WebCopier|webcraft@bea|WebDAV|webdevil|webdownloader|Webdup|WebEmailExtractor|WebFetch|WebGo\ IS|WebHook|Webinator|WebLeacher|WebMiner|WebMirror|webmole|WebReaper|WebSauger|WEBsaver|Website\ eXtractor|Website\ Quester|WebSnake|Webster|WebStripper|websucker|webvac|webwalk|webweasel|WebWhacker|WebZIP|Wget|whizbang|WhosTalking|Widow|WISEbot|WUMPUS|Wweb|WWWOFFLE|Wysigot|x-Tractor|Xaldon\ WebSpider|XGET|Zeus.*|^[^?]*\.ideography\.co\.uk|^[^?]*addresses\.com|^[^?]*iaea\.org [OR]
	RewriteCond %{HTTP_REFERER} ^XXX
	RewriteCond %{REMOTE_ADDR} !^192.54.144.229
	RewriteCond %{REMOTE_ADDR} !^88.175.179.251
	RewriteCond %{REMOTE_ADDR} !^88.181.134.103
	RewriteCond %{REMOTE_ADDR} !^88.187.112.170
	RewriteRule (.*) http://www.arthrodese-lombaire.fr/crawlprotect/noaccess/index.php?crawlprotectsite=1&crawlprotecttype=badbot&crawlprotecturl=%{REQUEST_URI}&crawlprotect2content   [L,QSA]
	#######################################################################################
	# Filter against shell attacks
	#######################################################################################
	RewriteCond %{REQUEST_URI} .*((php|my)?shell|remview.*|phpremoteview.*|sshphp.*|pcom|nstview.*|c99|r57|webadmin.*|phpget.*|phpwriter.*|fileditor.*|locus7.*|storm7.*)\.(p?s?x?htm?l?|txt|aspx?|cfml?|cgi|pl|php[3-9]{0,1}|jsp?|sql|xml) [NC,OR]
	RewriteCond %{REQUEST_METHOD} (GET|POST) [NC]
	RewriteCond %{QUERY_STRING} ^(.*)([-_a-z]{1,15})=(chmod|chdir|mkdir|rmdir|clear|whoami|uname|unzip|gzip|gunzip|grep|umask|telnet|ssh|ftp|mkmode|logname|edit_file|search_text|find_text|php_eval|download_file|ftp_file_down|ftp_file_up|ftp_brute|mail_file|mysql_dump|db_query)([^a-zA-Z0-9].+)*$ [OR]
	RewriteCond %{QUERY_STRING} ^work_dir=.*$ [OR]
	RewriteCond %{QUERY_STRING} ^command=.*&output.*$ [OR]
	RewriteCond %{QUERY_STRING} ^nts_[a-z0-9_]{0,10}=.*$ [OR]
	RewriteCond %{QUERY_STRING} ^c=(t|setup|codes)$ [OR]
	RewriteCond %{QUERY_STRING} ^act=((about|cmd|selfremove|chbd|trojan|backc|massbrowsersploit|exploits|grablogins|upload.*)|((chmod|f)&f=.*))$ [OR]
	RewriteCond %{QUERY_STRING} ^act=(ls|search|fsbuff|encoder|tools|processes|ftpquickbrute|security|sql|eval|update|feedback|cmd|gofile|mkfile)&d=.*$ [OR]
	RewriteCond %{QUERY_STRING} ^&?c=(l?v?i?&d=|v&fnot=|setup&ref=|l&r=|d&d=|tree&d|t&d=|e&d=|i&d=|codes|md5crack).*$
	RewriteCond %{REMOTE_ADDR} !^192.54.144.229
	RewriteCond %{REMOTE_ADDR} !^88.175.179.251
	RewriteCond %{REMOTE_ADDR} !^88.181.134.103
	RewriteCond %{REMOTE_ADDR} !^88.187.112.170
	RewriteRule (.*) http://www.arthrodese-lombaire.fr/crawlprotect/noaccess/index.php?crawlprotectsite=1&crawlprotecttype=shell&crawlprotecturl=%{REQUEST_URI}&crawlprotect2content   [L,QSA]
</ifModule>
#######################################################################################
#Existing File
#######################################################################################
# Lines That should already be in your .htacess
<Files "config.php">
	# Apache 2.2
	order allow,deny
	deny from all
	# Apache 2.4
	#Require all denied
</Files>
<Files "common.php">
	# Apache 2.2
	order allow,deny
	deny from all
	# Apache 2.4
	#Require all denied
</Files>

# You may need to un-comment the following lines
# try to remove forbidden error !
Options +FollowSymlinks
# To make sure that rewritten dir or file (/|.html) will not load dir.php in case it exist
# Options -MultiViews
# REMEBER YOU ONLY NEED TO STARD MOD REWRITE ONCE
RewriteEngine On
# Uncomment the statement below if you want to make use of
# HTTP authentication and it does not already work.
# This could be required if you are for example using PHP via Apache CGI.
# RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization},L]
# REWRITE BASE
RewriteBase /
# HERE IS A GOOD PLACE TO FORCE CANONICAL DOMAIN
RewriteCond %{HTTP_HOST} !^www\.arthrodese-lombaire\.fr$ [NC]
RewriteRule ^(.*)$ http://www.arthrodese-lombaire.fr/$1 [QSA,L,R=301]

# DO NOT GO FURTHER IF THE REQUESTED FILE / DIR DOES EXISTS
RewriteCond %{REQUEST_FILENAME} -f [OR]
RewriteCond %{REQUEST_FILENAME} -d
RewriteRule . - [L]

#####################################################
# PHPBB SEO REWRITE RULES ALL MODES
#####################################################
# AUTHOR : dcz www.phpbb-seo.com
# STARTED : 01/2006
#################################
# FORUMS PAGES
###############
# FORUM INDEX REWRITERULE WOULD STAND HERE IF USED. "forum" REQUIRES TO BE SET AS FORUM INDEX
# RewriteRule ^forum/forum\.html$ /forum/index.php [QSA,L,NC]
# FORUM ALL MODES
RewriteRule ^forum/(forum|[a-z0-9_-]*-f)([0-9]+)/?(page([0-9]+)\.html)?$ /forum/viewforum.php?f=$2&start=$4 [QSA,L,NC]
# TOPIC WITH VIRTUAL FOLDER ALL MODES
RewriteRule ^forum/(forum|[a-z0-9_-]*-f)([0-9]+)/(topic|[a-z0-9_-]*-t)([0-9]+)(-([0-9]+))?\.html$ /forum/viewtopic.php?f=$2&t=$4&start=$6 [QSA,L,NC]
# TOPIC WITHOUT FORUM ID & DELIM ALL MODES
RewriteRule ^forum/([a-z0-9_-]*)/?(topic|[a-z0-9_-]*-t)([0-9]+)(-([0-9]+))?\.html$ /forum/viewtopic.php?forum_uri=$1&t=$3&start=$5 [QSA,L,NC]
# PHPBB FILES ALL MODES
RewriteRule ^forum/ressources/[a-z0-9_-]+/(thumb/)?([0-9]+)$ /forum/download/file.php?id=$2&t=$1 [QSA,L,NC]
# PROFILES THROUGH USERNAME
RewriteRule ^forum/membre/([^/]+)/?$ /forum/memberlist.php?mode=viewprofile&un=$1 [QSA,L,NC]
# USER MESSAGES THROUGH USERNAME
RewriteRule ^forum/membre/([^/]+)/(topics|posts)/?(page([0-9]+)\.html)?$ /forum/search.php?author=$1&sr=$2&start=$4 [QSA,L,NC]
# GROUPS ALL MODES
RewriteRule ^forum/(groupe|[a-z0-9_-]*-g)([0-9]+)(-([0-9]+))?\.html$ /forum/memberlist.php?mode=group&g=$2&start=$4 [QSA,L,NC]
# POST
RewriteRule ^forum/post([0-9]+)\.html$ /forum/viewtopic.php?p=$1 [QSA,L,NC]
# ACTIVE TOPICS
RewriteRule ^forum/sujets-actifs(-([0-9]+))?\.html$ /forum/search.php?search_id=active_topics&start=$2&sr=topics [QSA,L,NC]
# UNANSWERED TOPICS
RewriteRule ^forum/sans-reponses(-([0-9]+))?\.html$ /forum/search.php?search_id=unanswered&start=$2&sr=topics [QSA,L,NC]
# NEW POSTS
RewriteRule ^forum/nouveaux-messages(-([0-9]+))?\.html$ /forum/search.php?search_id=newposts&start=$2&sr=topics [QSA,L,NC]
# UNREAD POSTS
RewriteRule ^forum/non-lu(-([0-9]+))?\.html$ /forum/search.php?search_id=unreadposts&start=$2 [QSA,L,NC]
# THE TEAM
RewriteRule ^forum/equipe\.html$ /forum/memberlist.php?mode=leaders [QSA,L,NC]
# HERE IS A GOOD PLACE TO ADD OTHER PHPBB RELATED REWRITERULES

# FORUM WITHOUT ID & DELIM ALL MODES
# THESE THREE LINES MUST BE LOCATED AT THE END OF YOUR HTACCESS TO WORK PROPERLY
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule ^forum/([a-z0-9_-]+)/?(page([0-9]+)\.html)?$ /forum/viewforum.php?forum_uri=$1&start=$3 [QSA,L,NC]
# FIX RELATIVE PATHS : FILES
RewriteRule ^forum/.+/(style\.php|ucp\.php|mcp\.php|faq\.php|download/file.php)$ /forum/$1 [QSA,L,NC,R=301]
# FIX RELATIVE PATHS : IMAGES
RewriteRule ^forum/.+/(styles/.*|images/.*)/$ /forum/$1 [QSA,L,NC,R=301]
# END PHPBB PAGES
#####################################################

Vous avez une idée par où commencer ?