Blocking access to the .htaccess file on your Apache web server blocks access to the file by curious web users that want to see what directives are in it. The code below added to the .htaccess file will forbid all access to the .htaccess file by web users while still allowing it to function.
#Deny attempts to view the Htaccess file. <Files .htaccess> Order allow,deny Deny from all </Files> |
Very important to add this code when setting up your web server.