latest updates from h5bp

includes/roots-htaccess.php

@@ -244,6 +244,41 @@ function roots_add_htaccess($rules) {
 	$rules .= "\n";
 	$rules .= "\n# php_flag register_globals Off";
 	$rules .= "\n";
+	$rules .= "\n# rename session cookie to something else, than PHPSESSID";
+	$rules .= "\n# php_value session.name sid";
+	$rules .= "\n";
+	$rules .= "\n# do not show you are using php";
+	$rules .= "\n# php_flag expose_php Off";
+	$rules .= "\n";
+	$rules .= "\n# level of log detail - log all errors";
+	$rules .= "\n# php_value error_reporting -1";
+	$rules .= "\n";
+	$rules .= "\n# write errors to log file";
+	$rules .= "\n# php_flag log_errors On";
+	$rules .= "\n";
+	$rules .= "\n# do not display errors in browser (production - Off, development - On)";
+	$rules .= "\n# php_flag display_errors Off";
+	$rules .= "\n";
+	$rules .= "\n# do not display startup errors (production - Off, development - On)";
+	$rules .= "\n# php_flag display_startup_errors Off";
+	$rules .= "\n";
+	$rules .= "\n# format errors in plain text";
+	$rules .= "\n# php_flag html_errors Off";
+	$rules .= "\n";
+	$rules .= "\n# show multiple occurrence of error";
+	$rules .= "\n# php_flag ignore_repeated_errors Off";
+	$rules .= "\n";
+	$rules .= "\n# show same errors from different sources";
+	$rules .= "\n# php_flag ignore_repeated_source Off";
+	$rules .= "\n";
+	$rules .= "\n# size limit for error messages";
+	$rules .= "\n# php_value log_errors_max_len 1024";
+	$rules .= "\n";
+	$rules .= "\n# don't precede error with string (doesn't accept empty string, use whitespace if you need)";
+	$rules .= "\n# php_value error_prepend_string \" \"";
+	$rules .= "\n";
+	$rules .= "\n# don't prepend to error (doesn't accept empty string, use whitespace if you need)";
+	$rules .= "\n# php_value error_append_string \" \"";
 	$rules .= "\n";
 	$rules .= "\n# Increase cookie security";
 	$rules .= "\n<IfModule php5_module>";