Options -Indexes
Options -MultiViews

# Protect sensitive files
<FilesMatch "^(config\.php|\.env)$">
    Order Allow,Deny
    Deny from all
</FilesMatch>

# Protect uploads directory - only allow image files
<FilesMatch "\.(php|php3|php4|php5|phtml)$">
    Order Allow,Deny
    Deny from all
</FilesMatch>

# Allow PHP files in root
<FilesMatch "^[^/]+\.php$">
    Order Deny,Allow
    Allow from all
</FilesMatch>

# PHP settings
php_value upload_max_filesize 10M
php_value post_max_size 10M
php_value max_execution_time 60
php_value memory_limit 256M
