# $Id: .htaccess,v 1.2 2003/09/24 13:57:00 wilt Exp $
#
# This is used with Apache WebServers
#
# For this to work, you must include the parameter 'Options' to
# the AllowOverride configuration
#
# Example:
#
# <Directory "/usr/local/apache/htdocs">
#   AllowOverride Options
# </Directory>
#
# 'All' with also work. (This configuration is in the
# apache/conf/httpd.conf file)

# The following makes adjustments to the SSL protocol for Internet
# Explorer browsers

<IfModule mod_setenvif.c>
  <IfDefine SSL>
    SetEnvIf User-Agent ".*MSIE.*" \
             nokeepalive ssl-unclean-shutdown \
             downgrade-1.0 force-response-1.0
  </IfDefine>
</IfModule>

# If Search Engine Friendly URLs do not work, try enabling the
# following Apache configuration parameter
#
# AcceptPathInfo On

# PHP configuration values

<IfModule mod_php5.c>
#php_flag register_long_arrays On
#php_value register_globals On
#php_flag display_errors Off
</IfModule>

<IfModule mod_php4.c>
#php_value session.use_trans_sid 0
#php_value register_globals 1
#php_flag display_errors Off
#php_flag track_errors On
</IfModule>

# The following RewrtieRules have been added as additional 
# security enhancement.  These are not required for the 
# normal operation of the cart and may optionally be turned off.

RewriteEngine On
RewriteBase /

# prevent any php code from direct execution in these open folders
RewriteRule admin/backups/(.*)\.php $1.html [L]
RewriteRule admin/images/graphs/(.*)\.php $1.html [L]
RewriteRule debug/(.*)\.php $1.html [L]
RewriteRule images/(.*)\.php $1.html [L]
RewriteRule includes/key/(.*)\.php $1.html [L]
RewriteRule includes/languages/(.*)\.php $1.html [L]
RewriteRule pub/(.*)\.php $1.html [L]
RewriteRule temp/(.*)\.php $1.html [L]
RewriteRule tmp/(.*)\.php $1.html [L]