# disabling file access

Options -Indexes

<FilesMatch ".*">
    <IfModule mod_authz_core.c>
        # Apache 2.4
        Require all denied
    </IfModule>
    <IfModule !mod_authz_core.c>
        # Apache 2.2
        order deny,allow
        deny from all
    </IfModule>
</FilesMatch>

<FilesMatch "\.(png|jpe?g|gif)$">
    <IfModule mod_authz_core.c>
        # Apache 2.4
        Require all granted
    </IfModule>
    <IfModule !mod_authz_core.c>
        # Apache 2.2
        order deny,allow
        allow from all
    </IfModule>
</FilesMatch>