h3xDev/whatworks/master/public/avatars/.htaccess
# this disallows direct access to the folder listing # and disallows access to any executables files (that users may upload) # the script allows only .jpg/.png uploads, but we never know... #Options -Indexes #Options -ExecCGI #oAddHandler cgi-script .php .php3 .php4 .phtml .pl .py .jsp .asp .htm .shtml .sh .cgi