I have been/am messing about with my configuration on my ISP provided webspace. They run Apache 2.0, and each user has their own directory, which they can configure through .htaccess.

I'm trying to forbid access for the whole site, but then allow access to all for certain files which I choose to make public.

I've got it working how I want, except for one part. My index file is index.php, and it is served to all. Pre security tweaking, somebody could request /rav0/ or /rav0/index.php and get the same result. Now, post security tweaking, requesting /rav0/index.php gives is the same as it was before, but requesting just /rav0/ wont serve the page, it throws a 403 at you.

I want to block access to /rav0/* then allow access to /rav0/index.php, and /rav0/ which gives the same as /rav0/index.php.

This is the part of my .htaccess that is giving me trouble

code:

---

Order deny,allow
Deny from all
<Files index.php>
Allow from all
</Files>

---