# Protege arquivos sensiveis de acesso direto via navegador
<FilesMatch "\.(php)$">
  # permite execucao normal de PHP
</FilesMatch>

# Bloqueia pastas de configuracao e includes
RedirectMatch 403 ^/config/.*$
RedirectMatch 403 ^/includes/.*$

# UTF-8
AddDefaultCharset UTF-8

# Cache de assets
<IfModule mod_expires.c>
  ExpiresActive On
  ExpiresByType text/css "access plus 7 days"
  ExpiresByType application/javascript "access plus 7 days"
</IfModule>
