# Deny *.txt, *.log, .*/*.php, .*, *.json, .lock, *.ht

# Not allow txt or logs to be downloaded
location ~* \.(txt|log)$ {
	deny all;
}

# Not allow execute php in hidden folders
location ~ \..*/.\.php$ {
	return 403;
}

# Not allow "hidden files"
location ~ (^|/)\. {
	return 403;
}

# Not allow *.json or *.lock
location ~* \.(json|lock)$ {
	return 403;
}

# Deny *.ht
location ~ /\.ht {
	deny all;
}