From 2d3f5ac16bd228a8b5cedab0237e2909a9c86bbc Mon Sep 17 00:00:00 2001
From: Julian Prieber <julian.prieber@linkstack.org>
Date: Sun, 30 Mar 2025 22:43:32 +0200
Subject: [PATCH] Improve security

Block access to .log files
---
 .htaccess | 21 ++++++++++++++-------
 1 file changed, 14 insertions(+), 7 deletions(-)

diff --git a/.htaccess b/.htaccess
index 4565d2f..e992218 100644
--- a/.htaccess
+++ b/.htaccess
@@ -33,20 +33,27 @@ Deny from all
     Order allow,deny
     Deny from all
 </Files>
+<Files ~ "\.log$">
+    Order allow,deny
+    Deny from all
+</Files>
 
 <IfModule mod_rewrite.c>
     <IfModule mod_negotiation.c>
         Options -MultiViews -Indexes
     </IfModule>
 
-RewriteEngine On
+    RewriteEngine On
 
-# Block access to .env files
-RewriteRule ^.*\.env$ - [F,L]
+    # Block access to .env files
+    RewriteRule ^.*\.env$ - [F,L]
 
-# Block access to SQLite database files
-RewriteRule ^.*\.sqlite$ - [F,L]
+    # Block access to SQLite database files
+    RewriteRule ^.*\.sqlite$ - [F,L]
 
-# Block access to ZIP files
-RewriteRule ^.*\.zip$ - [F,L]
+    # Block access to ZIP files
+    RewriteRule ^.*\.zip$ - [F,L]
+
+    # Block access to LOG files
+    RewriteRule ^.*\.log$ - [F,L]
 </IfModule>