# Deny access to config.php
<Files "config.php">
    Order Allow,Deny
    Deny from all
</Files>

# Prevent directory listing
Options -Indexes

# PHP security settings
php_flag display_errors Off
php_flag log_errors On

# Protect sensitive files
<FilesMatch "\.(sql|log|md)$">
    Order Allow,Deny
    Deny from all
</FilesMatch>
