If you want to go for a constricting security over the components of your site. For example:
Apache’s setting rules, this applies to all documents in that directory and in any low-level subdirectories under it. But suppose you want to make a subdirectory, such as /var/www/public, available without restriction.
Then, add the following to either the .htaccess file in the subdirectory or in an appropriate place:
Allow from all