1、保护系统设置
阻止用户设置.htaccess可以覆盖您已配置的安全功能的文件
<Directory "/">
AllowOverride None
</Directory>
2、拒绝客户端遍历整个文件系统
<Directory "/">
Require all denied
</Directory>
3、添加适当的Directory块以仅允许在您希望的那些区域中访问
<Directory "/usr/users/*/public_html">
Require all granted
</Directory>
<Directory "/usr/local/httpd">
Require all granted
</Directory>
4、禁止客户端能够访问日志
<Files ".ht*">
Require all denied
</Files>