X-Git-Url: https://git.donarmstrong.com/?a=blobdiff_plain;f=.htaccess;h=55dad98edcfbb8838af7025037f3c17751525ed2;hb=7033aedb93d429abdeccf3bceb7152b5f91dc104;hp=19064fdcaad870a2ebb499ef0fc19c5d552e65c0;hpb=b68022ca3782d5eb5a1a7ef6f8cf7abe1dc15bd6;p=roundcube.git

diff --git a/.htaccess b/.htaccess
index 19064fd..55dad98 100644
--- a/.htaccess
+++ b/.htaccess
@@ -10,12 +10,14 @@ php_value	upload_max_filesize	5M
 php_value	post_max_size		6M
 php_value	memory_limit		64M
 
-php_value	zlib.output_compression		Off
-php_value	magic_quotes_gpc		0
-php_value	zend.ze1_compatibility_mode	0
-php_value 	suhosin.session.encrypt 	Off 
-
-php_value	session.auto_start	0
+php_flag	zlib.output_compression		Off
+php_flag	magic_quotes_gpc		Off
+php_flag	magic_quotes_runtime		Off
+php_flag	zend.ze1_compatibility_mode	Off
+php_flag 	suhosin.session.encrypt 	Off
+
+#php_value	session.cookie_path		/
+php_flag	session.auto_start	Off
 php_value	session.gc_maxlifetime	21600
 php_value	session.gc_divisor	500
 php_value	session.gc_probability	1
@@ -27,6 +29,9 @@ php_value	mbstring.func_overload	0
 <IfModule mod_rewrite.c>
 RewriteEngine On
 RewriteRule ^favicon.ico$ skins/default/images/favicon.ico
+# security rules
+RewriteRule .svn/ - [F]
+RewriteRule ^README|INSTALL|LICENSE|SQL|bin|CHANGELOG$ - [F]
 </IfModule>
 
 <IfModule mod_deflate.c>
@@ -35,7 +40,7 @@ SetOutputFilter DEFLATE
 
 <IfModule mod_headers.c>
 # replace 'append' with 'merge' for Apache version 2.2.9 and later
-Header append Cache-Control public env=!NO_CACHE
+#Header append Cache-Control public env=!NO_CACHE
 </IfModule>
 
 <IfModule mod_expires.c>
@@ -45,4 +50,6 @@ ExpiresDefault "access plus 1 month"
 
 FileETag MTime Size
 
-
+<IfModule mod_autoindex.c>
+Options -Indexes
+</ifModule>