X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=.htaccess-dist;h=c5c1b5b716c1e75a09a7f02d5b105c88a1f882ee;hb=25fecc1945c4c50aee95ac601aff9ade22b3aa03;hp=a671cc680aff06f63aa301add63c8cc59c34ad33;hpb=e4a652cae805cbe3b048fb0193050061ad39809b;p=friendica.git

diff --git a/.htaccess-dist b/.htaccess-dist
index a671cc680a..c5c1b5b716 100644
--- a/.htaccess-dist
+++ b/.htaccess-dist
@@ -1,8 +1,12 @@
+# This file is meant to be copied to ".htaccess" on Apache-powered web servers.
+# The created .htaccess file can be edited manually and will not be overwritten by Friendica updates.
+
 Options -Indexes
 AddType application/x-java-archive .jar
 AddType audio/ogg .oga
 #AddHandler php53-cgi .php
 
+# deny access to log files (friendica.log or php.out)
 <FilesMatch "\.(out|log)$">
   <IfModule authz_host_module>
     #Apache 2.4
@@ -14,6 +18,18 @@ AddType audio/ogg .oga
   </IfModule>
 </FilesMatch>
 
+# deny access to backup files
+<FilesMatch "(\~|\.bak|\.swp)$">
+  <IfModule authz_host_module>
+    #Apache 2.4
+    Require all denied
+  </IfModule>
+  <IfModule !authz_host_module>
+    #Apache 2.2
+    Deny from all
+  </IfModule>
+</FilesMatch>
+
 <IfModule mod_rewrite.c>
   RewriteEngine on
   # Protect repository directory from browsing
@@ -35,6 +51,6 @@ AddType audio/ogg .oga
 
   RewriteCond %{REQUEST_FILENAME} !-f
   RewriteCond %{REQUEST_FILENAME} !-d
-  RewriteRule ^(.*)$ index.php?pagename=$1 [E=REMOTE_USER:%{HTTP:Authorization},L,QSA]
+  RewriteRule ^(.*)$ index.php?pagename=$1 [E=REMOTE_USER:%{HTTP:Authorization},L,QSA,B]
 
 </IfModule>