Code: Select all
RewriteCond %{REQUEST_METHOD} POST
# allow the server to POST to itself
RewriteCond %{REMOTE_ADDR} !127.0.0.1
# allow POST from trusted users
#RewriteCond %{REMOTE_ADDR} !123.456.789.123
# send all other post requests to 403 forbidden
RewriteRule ^ / [F]
The above code worked and there was no post to index.php file anymore, but as we found out, we allso couldnt login to/administrator. Is there any way to prevent post funcionts in joomla 2.5 and be able to login to administrator as well?