#
# Apache Security Conf.
#

# Prevent CrossSite Tracing
TraceEnable Off

# Hide Apache Version
ServerTokens ProductOnly
ServerSignature off

<IfModule headers_module>
  # Hide Header X-Powered-By
  Header always unset X-Powered-By
  # Prepend Click-Jacking
  Header append X-FRAME-OPTIONS "SAMEORIGIN"
  # for IR^?E
  Header set X-Content-Type-Options: "nosniff"
</IfModule>

# Anti POODLE
<IfModule ssl_module>
  SSLProtocol All -SSLv2 -SSLv3
</IfModule>

# Prevent to access to SCM Dir.
<DirectoryMatch "/\.svn">
   Require all denied
</DirectoryMatch>

<DirectoryMatch "/\.git">
   Require all denied
</DirectoryMatch>

<DirectoryMatch "/\.hq">
   Require all denied
</DirectoryMatch>

<DirectoryMatch "/\.bzr">
   Require all denied
</DirectoryMatch>