X-Git-Url: https://git.donarmstrong.com/?a=blobdiff_plain;f=.htaccess;h=2bc9f95eaa09245c8f4dbc412442bc26f8fc4f4c;hb=48e244a464574aa732ef5ab3fe759f1e05665b3d;hp=19064fdcaad870a2ebb499ef0fc19c5d552e65c0;hpb=685987db93fe029d5b7059a253b6dfcda976209c;p=roundcube.git
diff --git a/.htaccess b/.htaccess
index 19064fd..2bc9f95 100644
--- a/.htaccess
+++ b/.htaccess
@@ -10,11 +10,13 @@ php_value upload_max_filesize 5M
php_value post_max_size 6M
php_value memory_limit 64M
-php_value zlib.output_compression Off
-php_value magic_quotes_gpc 0
-php_value zend.ze1_compatibility_mode 0
-php_value suhosin.session.encrypt Off
+php_flag zlib.output_compression Off
+php_flag magic_quotes_gpc Off
+php_flag magic_quotes_runtime Off
+php_flag zend.ze1_compatibility_mode Off
+php_flag suhosin.session.encrypt Off
+#php_value session.cookie_path /
php_value session.auto_start 0
php_value session.gc_maxlifetime 21600
php_value session.gc_divisor 500
@@ -27,6 +29,9 @@ php_value mbstring.func_overload 0
RewriteEngine On
RewriteRule ^favicon.ico$ skins/default/images/favicon.ico
+# security rules
+RewriteRule .svn/ - [F]
+RewriteRule ^README|INSTALL|LICENSE|SQL|bin|CHANGELOG$ - [F]
@@ -35,7 +40,7 @@ SetOutputFilter DEFLATE
# replace 'append' with 'merge' for Apache version 2.2.9 and later
-Header append Cache-Control public env=!NO_CACHE
+#Header append Cache-Control public env=!NO_CACHE
@@ -44,5 +49,4 @@ ExpiresDefault "access plus 1 month"
FileETag MTime Size
-
-
+Options -Indexes