improved lockout of version control directories from browsing

1 files changed, 4 insertions, 1 deletions

diff --git a/.htaccess b/.htaccess
index 75b3e7a81..65578e235 100644
--- a/.htaccess
+++ b/.htaccess
@@ -2,13 +2,16 @@
 Options -Indexes
 AddType application/x-java-archive .jar
 
-<FilesMatch "\.(out|log|git)$">
+<FilesMatch "\.(out|log)$">
 Deny from all
 </FilesMatch>
 
 <IfModule mod_rewrite.c>
   RewriteEngine on
 
+  # Protect dot directories from browsing, e.g. ".git"
+  RewriteRule "(^|/)\." - [F]
+
   # Rewrite current-style URLs of the form 'index.php?q=x'.
   RewriteCond %{REQUEST_FILENAME} !-f
   RewriteCond %{REQUEST_FILENAME} !-d