# FIX_APPLIED_NETFAN_20260226
# .htaccess robustecido sin romper estética
Options -Indexes
Header always set X-Content-Type-Options "nosniff"
Header always set Referrer-Policy "strict-origin-when-cross-origin"
Header always set X-Frame-Options "SAMEORIGIN"
Header always set Permissions-Policy "geolocation=(), microphone=(), camera=()"
Header always set Content-Security-Policy "default-src 'self' https: data: blob:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://code.jquery.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://unpkg.com https://stackpath.bootstrapcdn.com https://maxcdn.bootstrapcdn.com https://ajax.googleapis.com https://kit.fontawesome.com https://use.fontawesome.com https://www.google.com https://www.gstatic.com https://www.googletagmanager.com https://www.google-analytics.com https://www.googleadservices.com https://connect.facebook.net https://static.cloudflareinsights.com https://radioshosting.com https://recursos.x7.com.ar; script-src-elem 'self' 'unsafe-inline' 'unsafe-eval' https://code.jquery.com https://cdnjs.cloudflare.com https://cdn.jsdelivr.net https://unpkg.com https://stackpath.bootstrapcdn.com https://maxcdn.bootstrapcdn.com https://ajax.googleapis.com https://kit.fontawesome.com https://use.fontawesome.com https://www.google.com https://www.gstatic.com https://www.googletagmanager.com https://www.google-analytics.com https://www.googleadservices.com https://connect.facebook.net https://static.cloudflareinsights.com https://radioshosting.com https://recursos.x7.com.ar; style-src 'self' 'unsafe-inline' https: data:; style-src-elem 'self' 'unsafe-inline' https: data:; img-src 'self' https: data: blob:; font-src 'self' https: data:; media-src 'self' https: data: blob:; connect-src 'self' https: wss:; frame-src 'self' https://www.google.com https://www.youtube.com https://www.youtube-nocookie.com https://player.vimeo.com https://www.facebook.com https:; object-src 'none'; base-uri 'self'; frame-ancestors 'self';"
RewriteEngine On
# Bloqueo específico del dominio basura
RewriteCond %{REQUEST_URI} travel-js-ns\.beer [NC,OR]
RewriteCond %{QUERY_STRING} travel-js-ns\.beer [NC,OR]
RewriteCond %{HTTP_REFERER} travel-js-ns\.beer [NC]
RewriteRule ^ - [F,L]
RewriteRule ^rss\.xml$ rss.php [L]
RewriteRule ^nota/([^/]+)/([^/]+)/?$ nota.php?ID=$1&e=$2 [L,QSA]
RewriteRule ^a-nota/([^/]+)/([^/]+)/?$ nota-a.magazine.php?ID=$1&e=$2 [L,QSA]
RewriteRule ^tienda/([^/]+)/([^/]+)/?$ tienda_articulo.php?ID=$1&e=$2 [L,QSA]
RewriteRule ^club/([^/]+)/([^/]+)/?$ club.php?ID=$1&e=$2 [L,QSA]
RewriteRule ^clubes/?$ clubes.php [L]
RewriteRule ^nota-amp/([^/]+)/([^/]+)/?$ nota_amp.php?ID=$1&e=$2 [L,QSA]
RewriteRule ^n/([^/]+)/?$ nota.php?ID=$1 [L,QSA]
RewriteRule ^noticias/([^/]+)/([^/]+)/?$ index_seccion.php?cat=$1&r=$2 [L,QSA]
RewriteRule ^seccion/([^/]+)/([^/]+)/?$ seccion.php?e=$1&r=$2 [L,QSA]
RewriteRule ^nacional/?$ lot_nacional.php [L]
RewriteRule ^buenos-aires/?$ lot_buenos-aires.php [L]
RewriteRule ^catamarca/?$ lot_catamarca.php [L]
RewriteRule ^chaco/?$ lot_chaco.php [L]
RewriteRule ^chubut/?$ lot_chubut.php [L]
RewriteRule ^corrientes/?$ lot_corrientes.php [L]
RewriteRule ^entre-rios/?$ lot_entre-rios.php [L]
RewriteRule ^formosa/?$ lot_formosa.php [L]
RewriteRule ^tierra-del-fuego/?$ lot_tierra-del-fuego.php [L]
RewriteRule ^jujuy/?$ lot_jujuy.php [L]
RewriteRule ^la-pampa/?$ lot_la-pampa.php [L]
RewriteRule ^la-rioja/?$ lot_la-rioja.php [L]
RewriteRule ^mendoza/?$ lot_mendoza.php [L]
RewriteRule ^misiones/?$ lot_misiones.php [L]
RewriteRule ^neuquen/?$ lot_neuquen.php [L]
RewriteRule ^rio-negro/?$ lot_rio-negro.php [L]
RewriteRule ^salta/?$ lot_salta.php [L]
RewriteRule ^san-juan/?$ lot_san-juan.php [L]
RewriteRule ^san-luis/?$ lot_san-luis.php [L]
RewriteRule ^santa-cruz/?$ lot_santa-cruz.php [L]
RewriteRule ^santa-fe/?$ lot_santa-fe.php [L]
RewriteRule ^santiago-del-estero/?$ lot_santiago-del-estero.php [L]
RewriteRule ^tucuman/?$ lot_tucuman.php [L]
RewriteRule ^uruguay/?$ lot_uruguay.php [L]
AddOutputFilterByType DEFLATE text/plain text/html text/xml text/css application/javascript application/json application/xml image/svg+xml
ExpiresActive On
# HTML casi sin cache
ExpiresByType text/html "access plus 5 seconds"
ExpiresByType application/xhtml+xml "access plus 5 seconds"
# CSS / JS
ExpiresByType text/css "access plus 1 month"
ExpiresByType application/javascript "access plus 1 month"
ExpiresByType application/x-javascript "access plus 1 month"
# Imágenes
ExpiresByType image/gif "access plus 1 year"
ExpiresByType image/x-icon "access plus 1 year"
ExpiresByType image/jpeg "access plus 1 year"
ExpiresByType image/jpg "access plus 1 year"
ExpiresByType image/png "access plus 1 year"
ExpiresByType image/svg+xml "access plus 1 year"
ExpiresByType image/webp "access plus 1 year"
# Video
ExpiresByType video/mp4 "access plus 1 year"
ExpiresByType video/mpeg "access plus 1 year"
ExpiresByType video/quicktime "access plus 1 year"
ExpiresByType video/x-msvideo "access plus 1 year"
ExpiresByType video/webm "access plus 1 year"
# PDF
ExpiresByType application/pdf "access plus 1 year"
# Fuentes
ExpiresByType font/ttf "access plus 1 year"
ExpiresByType font/otf "access plus 1 year"
ExpiresByType font/woff "access plus 1 year"
ExpiresByType font/woff2 "access plus 1 year"
ExpiresByType application/vnd.ms-fontobject "access plus 1 year"
# Audio
ExpiresByType audio/mpeg "access plus 1 year"
ExpiresByType audio/ogg "access plus 1 year"
ExpiresByType audio/wav "access plus 1 year"
# php -- BEGIN cPanel-generated handler, do not edit
# Set the “ea-php82” package as the default “PHP” programming language.
AddHandler application/x-httpd-ea-php82 .php .php8 .phtml
# php -- END cPanel-generated handler, do not edit