Good point! More restrictive, but all that is required in this case. But may want to use:
AllowOverride AuthConfig Limit
..in case he wants to control host access (now or in the future) - could also add 'Indexes' directive-type, but per server config would do. However, AllowOverride AuthConfig alone should suffice. I prefer AllowOverride All as I use (many) directory-specific directive-types (using them all across all my .htaccess files, combined), and prefer to control per .htaccess, via FTP.
----
Cheers,
Dan
Founder and CEO
LionsGate Creative
GoodPassRobot
Magelln
AllowOverride AuthConfig Limit
..in case he wants to control host access (now or in the future) - could also add 'Indexes' directive-type, but per server config would do. However, AllowOverride AuthConfig alone should suffice. I prefer AllowOverride All as I use (many) directory-specific directive-types (using them all across all my .htaccess files, combined), and prefer to control per .htaccess, via FTP.
----
Cheers,
Dan
Founder and CEO
LionsGate Creative
GoodPassRobot
Magelln