improve .htaccess security rules:

1. also prevent access to .gitignore 2. make the second security rule work as expected 3. include README.md in security rules
author: Raoul Bhatia <raoul@bhatia.at> 2012-05-23 15:34:33 +0200
committer: Raoul Bhatia <raoul@bhatia.at> 2012-05-23 16:18:23 +0200
commit: b332e799b4840ff6d83c6e3730dd256ce493d79b (patch)
tree: 91bcb240757e98703498846679800655032fa5e5
parent: 85a6173879bb2486e394fb8e6b8a107a59167374 (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/.htaccess b/.htaccess
index d5ebe4c20..82afe76de 100644
--- a/.htaccess
+++ b/.htaccess
@@ -30,8 +30,8 @@ php_value	mbstring.func_overload	0
 RewriteEngine On
 RewriteRule ^favicon\.ico$ skins/default/images/favicon.ico
 # security rules
-RewriteRule .git/ - [F]
-RewriteRule ^README|INSTALL|LICENSE|SQL|bin|CHANGELOG$ - [F]
+RewriteRule .git - [F]
+RewriteRule ^/?(README(.md)?|INSTALL|LICENSE|SQL|bin|CHANGELOG)$ - [F]
 </IfModule>
 
 <IfModule mod_deflate.c>
author	Raoul Bhatia <raoul@bhatia.at>	2012-05-23 15:34:33 +0200
committer	Raoul Bhatia <raoul@bhatia.at>	2012-05-23 16:18:23 +0200
commit	b332e799b4840ff6d83c6e3730dd256ce493d79b (patch)
tree	91bcb240757e98703498846679800655032fa5e5
parent	85a6173879bb2486e394fb8e6b8a107a59167374 (diff)