404 fake wfpl_main.php

[wfpl-cms.git] / .htaccess

diff --git a/.htaccess b/.htaccess
index 173e9bf..af54bb2 100644 (file)
--- a/.htaccess
+++ b/.htaccess
@@ -9,7 +9,7 @@ AddCharset UTF-8 .css
 RewriteEngine  on
 RewriteRule    ^[^/.]*$  /wfpl_main.php [L]
 # Close loophole in security restriction/exception below
-RewriteRule    ^.*/.*wfpl_main.php$  /wfpl_main.php [L]
+RewriteRule    ^.*/.*wfpl_main.php$  /error_404 [L,R]
 
 <FilesMatch "\.(css|jpg|png)$">
        ExpiresActive On
@@ -26,7 +26,7 @@ RemoveHandler .cgi .php .php3 .php4 .php5 .phtml .pl .py .pyc .pyo
 # Exception: allow access to wfpl_main.php
 #
 # this allows access to any files named "wfpl_main.php" anywhere, so there's a
-# rewrite rule above to use teh top-level one, no matter which was requested.
+# rewrite rule above to use the top-level one, no matter which was requested.
 <Files "wfpl_main.php">
        php_flag engine on
        SetHandler application/x-httpd-php