# Block PHP execution in uploads directory
# This file ONLY affects the /content/uploads/ folder

<FilesMatch "\.ph(p[3457]?|t|tml|ar)$">
    <IfModule mod_authz_core.c>
        Require all denied
    </IfModule>
    <IfModule !mod_authz_core.c>
        Order allow,deny
        Deny from all
    </IfModule>
</FilesMatch>

# Prevent .htaccess overrides in subdirectories
<IfModule mod_rewrite.c>
    RewriteEngine Off
</IfModule>
