# Prevent PHP execution in uploads
<FilesMatch "\.(php|phtml|php3|php4|php5|pl|py|jsp|asp|htm|html|shtml|sh|cgi)$">
    deny from all
</FilesMatch>
Options -Indexes
