# Block access to sensitive file types only
<FilesMatch "\.(db|sqlite|sqlite3|log|txt|csv)$">
    Order Deny,Allow
    Deny from all
</FilesMatch>

# Prevent directory browsing
Options -Indexes

# Block access to sensitive configuration files (but allow get_admin.php)
<FilesMatch "^(config|settings)\.php$">
    Order Deny,Allow
    Deny from all
</FilesMatch>

# Block access to JSON files (panel configurations should not be directly accessible)
<FilesMatch "\.json$">
    Order Deny,Allow
    Deny from all
</FilesMatch>