You could also add rules to it to prevent it being opened by anyone except the person with the correct ip and or username
HTML Code:
<Files "*">
Order deny, allow
Deny from all
Allow from 128.252.135.
Allow from .mydomain.com
Allow from host.mydomain.com
</Files>
put this in your .htaccess that is above /public_html change the ip address to yours and the domain names (host,mydomain.com would be the name of your server like for instance vborg.vbulletin.org if the name of .orgs server was set out like that).
With that only you and your server would have access to the files
, if you mess it up and you are on vps then only your hosts will be able to fix it so be careful.