Options -Indexes AddType application/x-java-archive .jar AddType audio/ogg .oga #SSLCipherSuite ECDHE-RSA-AES128-SHA256:AES128-GCM-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH # don't allow any web access to logfiles, even after rotation/compression <FilesMatch "\.(out|log|gz)$"> Deny from all </FilesMatch> <IfModule mod_rewrite.c> RewriteEngine on # Protect repository directory from browsing RewriteRule "(^|/)\.git" - [F] RewriteRule "(^|/)store" - [F] # Rewrite current-style URLs of the form 'index.php?q=x'. # Also place auth information into REMOTE_USER for sites running # in CGI mode. RewriteCond %{REQUEST_FILENAME} !-f RewriteCond %{REQUEST_FILENAME} !-d RewriteRule ^(.*)$ index.php?q=$1 [E=REMOTE_USER:%{HTTP:Authorization},L,QSA] </IfModule>