# Security: Prevent PHP execution in uploads directory
<FilesMatch "\.php$">
    Order Allow,Deny
    Deny from all
</FilesMatch>

# Allow file downloads
<FilesMatch "\.(jpg|jpeg|png|gif|pdf|zip|rar|mp4|mp3|doc|docx|xls|xlsx|txt)$">
    Order Allow,Deny
    Allow from all
</FilesMatch>

# Disable directory listing
Options -Indexes
