# Protect upload directory - prevent PHP execution
<FilesMatch "\.php$">
    Order allow,deny
    Deny from all
</FilesMatch>

Options -Indexes
