X7ROOT File Manager
Current Path:
/home/u126090504/domains/jims.org.in/public_html/admin/faculty
home
/
u126090504
/
domains
/
jims.org.in
/
public_html
/
admin
/
faculty
/
📁
..
📄
.htaccess
(2.39 KB)
📄
1.jpg
(165.59 KB)
📄
11.jpg
(34.35 KB)
📄
25.jpg
(135.89 KB)
📄
7.jpg
(112.29 KB)
📄
Bol.png
(14.39 KB)
📄
Picture1-1.webp
(9.12 KB)
📄
Screenshot (1).png
(284.37 KB)
📄
WhatsApp Image 2021-11-22 at 1.02.00 PM.jpeg
(339.39 KB)
📄
WhatsApp Image 2023-02-15 at 5.34.36 PM.jpeg
(172.3 KB)
📄
WhatsApp Image 2023-02-15 at 5.34.37 PM (1).jpeg
(179.34 KB)
📄
WhatsApp Image 2023-02-15 at 5.34.37 PM.jpeg
(125.49 KB)
📄
WhatsApp Image 2023-02-15 at 5.34.59 PM.jpeg
(235.74 KB)
📄
WhatsApp Image 2023-02-15 at 5.35.04 PM (1).jpeg
(205.67 KB)
📄
WhatsApp Image 2023-02-15 at 5.35.12 PM (1).jpeg
(214.48 KB)
📄
WhatsApp Image 2023-02-15 at 5.35.13 PM.jpeg
(213.61 KB)
📄
_DSC9199.jpg
(544.71 KB)
📄
a1.jpg
(87.82 KB)
📄
a2.jpg
(87 KB)
📄
a3.jpg
(75.22 KB)
📄
a4.jpg
(87.59 KB)
📄
cert_format.jpg
(635.99 KB)
📄
dw.jpg
(27.86 KB)
📄
emma.jpg
(994.82 KB)
📄
et.jpg
(961.51 KB)
📄
images.jpg
(9.18 KB)
📄
logo.png
(2.13 MB)
📄
png-transparent-iso-logo-logo-iso-9000-iso-9001-2015-certification-brand-iso-9001-emblem-label-trademark.png
(54.94 KB)
Editing: .htaccess
# 1) Default: deny everything first <IfModule mod_authz_core.c> Require all denied </IfModule> <IfModule !mod_authz_core.c> Deny from all </IfModule> # 2) Allow only a strict whitelist of safe media/document extensions (case-insensitive) <FilesMatch "(?i)\.(jpg|jpeg|png|gif|webp|svg|pdf)$"> <IfModule mod_authz_core.c> Require all granted </IfModule> <IfModule !mod_authz_core.c> Order allow,deny Allow from all </IfModule> </FilesMatch> # 3) Disable handlers for common script extensions (prevent AddHandler trick) <IfModule mod_php7.c> php_flag engine off </IfModule> <IfModule mod_php5.c> php_flag engine off </IfModule> RemoveHandler .php .phtml .phar .pl .py .cgi .asp .aspx .jsp .jar .rb .sh RemoveType .php .phtml .phar .pl .py .cgi .asp .aspx .jsp .jar .rb .sh AddType text/plain .php .phtml .phar .pl .py .cgi .asp .aspx .jsp .jar .rb .sh # 4) Extra: Block requests that attempt double-extensions (image.jpg.php) or any script ext anywhere in the name <IfModule mod_rewrite.c> RewriteEngine On # Immediately forbid any request URL containing a script-like extension RewriteCond %{REQUEST_URI} (?i)\.(php[0-9]*|phtml|phar|pl|py|cgi|sh|exe|asp|aspx|jsp|jar|class|java|rb)$ RewriteRule .* - [F,L] # Block double-extension tricks: image.jpg.php, name.png.aspx, etc. RewriteCond %{REQUEST_URI} (?i)\.(jpg|jpeg|png|gif|webp|svg|pdf)\.(php[0-9]*|phtml|phar|asp|aspx|jsp)$ RewriteRule .* - [F,L] # Block suspicious extension names often used by attackers (.jquery, .tmp, random tokens) RewriteCond %{REQUEST_URI} (?i)\.(jquery|tmp|log|bak|old|enc|dat)$ RewriteRule .* - [F,L] # Block filenames with multiple dots where last extension is not whitelisted RewriteCond %{REQUEST_URI} ^(.*/)?[^/]+\.[^.]+$ RewriteCond %{REQUEST_URI} !(?i)\.(jpg|jpeg|png|gif|webp|svg|pdf)$ RewriteRule .* - [F,L] </IfModule> # 5) Block hidden files (like .htaccess, .env, .git) <FilesMatch "^\."> <IfModule mod_authz_core.c> Require all denied </IfModule> <IfModule !mod_authz_core.c> Deny from all </IfModule> </FilesMatch> # 6) Extra security headers <IfModule mod_headers.c> Header set X-Content-Type-Options "nosniff" Header always set X-Frame-Options "SAMEORIGIN" </IfModule> # 7) Prevent directory listing Options -Indexes
Upload File
Create Folder
