# Prevent direct access to sensitive files like SQLite databases and logs
<FilesMatch "\.(sqlite|db|log|sqlite3)$">
    <IfModule mod_authz_core.c>
        Require all denied
    </IfModule>
    <IfModule !mod_authz_core.c>
        Order allow,deny
        Deny from all
    </IfModule>
</FilesMatch>

# Disable directory browsing
Options -Indexes
