Index: branches/5.1.x/tools/.htaccess
===================================================================
diff -u -N -r12127 -r12657
--- branches/5.1.x/tools/.htaccess (.../.htaccess) (revision 12127)
+++ branches/5.1.x/tools/.htaccess (.../.htaccess) (revision 12657)
@@ -1,16 +1,49 @@
-# Uncomment line below if FollowSymLinks option is not enabled by default in server configuration
-#Options +FollowSymLinks
+### File security
+# Exclude direct access to tpl, tpl.xml, inc.php, sql extensions
+#
+
+ order allow,deny
+ deny from all
+
+
+# Exclude direct access
+
+ order allow,deny
+ deny from all
+
+
+## Enable mod-rewrite
RewriteEngine On
-#RewriteBase /
+###### Rewrite rules to block common hacks
+## If you experience problems comment out the operations listed below
+## Block out any script trying to base64_encode crap to send via URL
+RewriteCond %{QUERY_STRING} base64_encode.*\(.*\) [OR]
+## Block out any script that includes a