# Protect sensitive files and directories
<FilesMatch "\.(md|log|sql)$">
    Order Allow,Deny
    Deny from all
</FilesMatch>

# Protect log directory
<IfModule mod_rewrite.c>
    RewriteEngine On
    RewriteCond %{REQUEST_URI} logs/
    RewriteRule ^(.*)$ - [F,L]
</IfModule>

# Prevent directory browsing
Options -Indexes

