Improve .htaccess with some security rules (opensourcepos#120)

abdulrehmanOSO · Mar 8, 2016 · 6ccfc8b · 6ccfc8b
1 parent b27d3c0
commit 6ccfc8b
Showing 1 changed file with 22 additions and 1 deletion.
diff --git a/.htaccess b/.htaccess
@@ -8,4 +8,25 @@ RewriteEngine On
 
 RewriteCond %{REQUEST_FILENAME} !-f
 RewriteCond %{REQUEST_FILENAME} !-d
-RewriteRule ^(.*)$ index.php?/$1 [L]
+RewriteRule ^(.*)$ index.php?/$1 [L]
+
+# disable directory browsing
+# For security reasons, Option all cannot be overridden.
+#Options All -Indexes
+Options ExecCGI Includes IncludesNOEXEC SymLinksIfOwnerMatch -Indexes
+
+# prevent folder listing
+IndexIgnore *
+
+# secure htaccess file
+<Files .htaccess>
+ order allow,deny
+ deny from all
+</Files>
+
+# prevent access to PHP error log
+<Files error_log>
+ order allow,deny
+ deny from all
+ satisfy All
+</Files>