Hello moussa
For security matters, you can consult this Wiki page.
Please be careful, the 6G Blacklist is recommended, not the 7G.
I am preparing a .htaccess file with rules specially crafted for RosarioSIS, if you want to give it a try:
<IfModule mod_rewrite.c>
RewriteEngine On
## Begin - Security
# Block direct access to files inside the vendor folders
RewriteRule /vendor/.*$ - [F]
# Block direct access to .md and .sql files except for those uploaded to assets/FileUploads/
RewriteRule ^(?!assets/FileUploads/).*\.(md|sql)$ - [F]
# Block direct access to files and folders beginning with a dot
RewriteRule (^|/)\.(?!well-known) - [F]
# Block access to specific files
RewriteRule (^|/)(LICENSE|COPYRIGHT|composer\.lock|composer\.json|package\.json|\.htaccess)$ - [F]
#
## End - Security
</IfModule>
In a future version too, the PDF files in the root folder will be removed.