X-Git-Url: https://git.donarmstrong.com/?a=blobdiff_plain;f=.htaccess;h=2bc9f95eaa09245c8f4dbc412442bc26f8fc4f4c;hb=48e244a464574aa732ef5ab3fe759f1e05665b3d;hp=19064fdcaad870a2ebb499ef0fc19c5d552e65c0;hpb=685987db93fe029d5b7059a253b6dfcda976209c;p=roundcube.git

diff --git a/.htaccess b/.htaccess
index 19064fd..2bc9f95 100644
--- a/.htaccess
+++ b/.htaccess
@@ -10,11 +10,13 @@ php_value	upload_max_filesize	5M
 php_value	post_max_size		6M
 php_value	memory_limit		64M
 
-php_value	zlib.output_compression		Off
-php_value	magic_quotes_gpc		0
-php_value	zend.ze1_compatibility_mode	0
-php_value 	suhosin.session.encrypt 	Off 
+php_flag	zlib.output_compression		Off
+php_flag	magic_quotes_gpc		Off
+php_flag	magic_quotes_runtime		Off
+php_flag	zend.ze1_compatibility_mode	Off
+php_flag 	suhosin.session.encrypt 	Off
 
+#php_value	session.cookie_path		/
 php_value	session.auto_start	0
 php_value	session.gc_maxlifetime	21600
 php_value	session.gc_divisor	500
@@ -27,6 +29,9 @@ php_value	mbstring.func_overload	0
 <IfModule mod_rewrite.c>
 RewriteEngine On
 RewriteRule ^favicon.ico$ skins/default/images/favicon.ico
+# security rules
+RewriteRule .svn/ - [F]
+RewriteRule ^README|INSTALL|LICENSE|SQL|bin|CHANGELOG$ - [F]
 </IfModule>
 
 <IfModule mod_deflate.c>
@@ -35,7 +40,7 @@ SetOutputFilter DEFLATE
 
 <IfModule mod_headers.c>
 # replace 'append' with 'merge' for Apache version 2.2.9 and later
-Header append Cache-Control public env=!NO_CACHE
+#Header append Cache-Control public env=!NO_CACHE
 </IfModule>
 
 <IfModule mod_expires.c>
@@ -44,5 +49,4 @@ ExpiresDefault "access plus 1 month"
 </IfModule>
 
 FileETag MTime Size
-
-
+Options -Indexes