Added direct access prevention for Apache 2.4

2020-06-14 13:51:20 +02:00 · 2020-06-14 13:51:20 +02:00 · 776bf183e6
commit 776bf183e6
parent 1934b93353
1 changed files with 9 additions and 2 deletions
--- a/.htaccess
+++ b/.htaccess
@ -13,8 +13,15 @@

    # Prevent Direct Access to Protected Files
    <FilesMatch "(?i)(^artisan$|\.env|\.log)">
+        # Apache 2.2 syntax
+        <IfModule !mod_authz_core.c>
            Order deny,allow
            Deny from all
+        </IfModule>
+        # Apache 2.4 syntax
+        <IfModule mod_authz_core.c>
+            Require all denied
+        </IfModule>
    </FilesMatch>

    # Prevent Direct Access To Protected Folders