# Block direct PHP execution in uploads
<FilesMatch "\.php$">
  Order Allow,Deny
  Deny from all
</FilesMatch>
# Allow image/pdf viewing
Options -Indexes
