Added an alternative rule to deny access to hidden files

phanan · Feb 9, 2015 · 5b44d45 · 5b44d45
1 parent a79f920
commit 5b44d45
Showing 1 changed file with 5 additions and 0 deletions.
diff --git a/README.md b/README.md
@@ -120,6 +120,11 @@ RewriteCond %{SCRIPT_FILENAME} -f
 RewriteRule "(^|/)\." - [F]
 ```
 
+Alternatively, you can just raise a `Not Found` error, giving the attacker dude no clue:
+``` apacheconf
+RedirectMatch 404 /\..*$
+```
+
 ### Deny Access to Backup and Source Files
 These files may be left by some text/html editors (like Vi/Vim) and pose a great security danger, when anyone can access them.
 ``` apacheconf