# This file should be copied to all of your sites' "files" directories
# (both public and private) to prevent the remote code execution
# described in https://drupal.org/SA-CORE-2013-003
# Turn off all options we don't need.
# Set the catch-all handler to prevent scripts from being executed.
# Override the handler again if we're run later in the evaluation list.
# If we know how to do it safely, disable the PHP engine entirely.
php_flag engine off