Hi, so I'm new to this whole webserver thing so thanks for bearing with my inexperience.
While setting up DokuWiki in my webserver I noticed that, although I can't access any of the files in data, conf, bin, inc and vendor I still got the banner saying to review my security when doing the install.
I did not enable .htaccess since Apache recommends against using it when possible (https://httpd.apache.org/docs/2.4/howto/htaccess.html)
That said, I edited my Apache httpd.conf to do the following:
Directory "${SRVROOT}/htdocs">
RedirectMatch ^/$ /wiki/
</Directory>
<Directory "${SRVROOT}/htdocs/dokuwiki/data">
Require all denied
</Directory>
<Directory "${SRVROOT}/htdocs/dokuwiki/conf">
Require all denied
</Directory>
<Directory "${SRVROOT}/htdocs/dokuwiki/bin">
Require all denied
</Directory>
<Directory "${SRVROOT}/htdocs/dokuwiki/inc">
Require all denied
</Directory>
<Directory "${SRVROOT}/htdocs/dokuwiki/vendor">
Require all denied
</Directory>
Aside from this, is there something else I should include in my httpd.conf to get the same level of security that using htaccess would get me without having any impact on the performance of the webserver per Apache documentation?
Thanks!