RewriteEngine On

# Force HTTPS (uncomment in production)
# RewriteCond %{HTTPS} off
# RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

# Prevent directory listing
Options -Indexes

# Protect sensitive files
<FilesMatch "(^\.|\.(sql|log|ini|md)$)">
    Order allow,deny
    Deny from all
</FilesMatch>

# Default charset
AddDefaultCharset UTF-8

# PHP settings
php_value upload_max_filesize 5M
php_value post_max_size 5M
