# Prevent directory listing
Options -Indexes

# Deny access to data folder from web
<IfModule mod_authz_core.c>
  <Directory "./data">
    Require all denied
  </Directory>
</IfModule>

# Basic security headers
<IfModule mod_headers.c>
Header set X-Content-Type-Options "nosniff"
Header set X-Frame-Options "DENY"
</IfModule>