To get the index.php redirects through .htaccess to work I had to change the AllowOverride option from “None” to “All” in my apache configuration. I started reading about AllowOverride and how it works and I’ve found that there is actually a handful of different options that “All” encompasses. Further reading taught me that each option opens up a number of security threats to the website. So this got me thinking that having it set to “All” might not be the best option. I still don’t understand enough of how it works, though. What option can I set it to in order to allow the redirects to work but at the same time not open up unnecessary security holes?
[Mod Edit: Moved to the Community Help forum]