This is a simple example illustrating the use of htaccess to block access of files based upon certain file types.
1. Prevent access of .php files in a directory.
Create a file .htaccess inside the folder/directory where you do not want the .php files to be invoked or called or executed.
Now place the following code in the file you have created.
deny from all
Save the changes and you’re done.
2. Prevent access of a file
Require all denied Order allow,deny Deny from all
In above piece of code “readme” can be any file name and “.html” can be any file extension. This code is better to use if you compare with the one mentioned in the point 1.
3. Hide directory indexing
Place this piece of code in your htaccess file to prevent directory indexing of files.