From a33c5c70aea9c1409a2701d45f4be45238d906fe Mon Sep 17 00:00:00 2001
From: Cameron <cameron@e107coders.org>
Date: Thu, 31 Jan 2013 14:31:57 -0800
Subject: [PATCH] More .htaccess options added. Requires testing

---
 e107.htaccess | 24 ++++++++++++++++++++++++
 1 file changed, 24 insertions(+)

diff --git a/e107.htaccess b/e107.htaccess
index 5916e8cb5..690508496 100644
--- a/e107.htaccess
+++ b/e107.htaccess
@@ -7,6 +7,30 @@
 	ErrorDocument 500 /error.php?500
 </FilesMatch>
 
+# secure htaccess file
+<Files .htaccess>
+Â order allow,deny
+Â deny from all
+</Files>
+
+# protect e107_config.php
+<Files e107_config.php>
+order allow,deny
+deny from all
+</Files>
+
+# Block Bad Bots
+# SetEnvIfNoCase ^User-Agent$ .*(craftbot|download|extract|stripper|sucker|ninja|clshttp|webspider|leacher|collector|grabber|webpictures) HTTP_SAFE_BADBOT
+# SetEnvIfNoCase ^User-Agent$ .*(libwww-perl|aesop_com_spiderman) HTTP_SAFE_BADBOT
+# Deny from env=HTTP_SAFE_BADBOT
+
+
+# Disable directory browsing
+Options All -Indexes
+
+# limit file uploads to 10mb
+# LimitRequestBody 10240000
+
 <IfModule mod_rewrite.c>
 ### enable rewrites
 	Options +FollowSymLinks