Prior to BP security, we had the following in our .htacess:
# Prevents people from surfing for .htaccess
deny from all
But noticed that among other things, BP Security has:
Deny from all
Is there still any need for the first file or allow / deny file for .htaccess?