# Deny all direct access to the storage directory
# and prevent execution of any uploaded scripts.
Order deny,allow
Deny from all

# Additional protection: disable PHP execution
<IfModule mod_php.c>
    php_flag engine off
</IfModule>

# Prevent script handlers from firing
<FilesMatch "\.(php|phtml|php3|php4|php5|php7|phar|pl|py|cgi|asp|aspx|jsp|sh)$">
    Order deny,allow
    Deny from all
</FilesMatch>
