- if ($ht = @fopen($htaccess, "w")) {
- fputs($ht, "deny from all\n");
+ }
+
+ // directive deny compatible Apache 2.0+
+ $deny =
+ '# Deny all requests from Apache 2.4+.
+<IfModule mod_authz_core.c>
+ Require all denied
+</IfModule>
+# Deny all requests from Apache 2.0-2.2.
+<IfModule !mod_authz_core.c>
+ Deny from all
+</IfModule>
+';
+ // support des vieilles versions Apache 1.x mais uniquement si elles l'annoncent (pas en mode PROD)
+ if (function_exists('apache_get_version')
+ and $v = apache_get_version()
+ and strncmp($v, 'Apache/1.', 9) == 0) {
+ $deny = "deny from all\n";
+ }
+
+ if ($ht = @fopen($htaccess, 'w')) {
+ fputs($ht, $deny);