BUGFIX Disallow web access to sapphire/silverstripe_version to avoid information leakage

git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@114773 467b73ca-7a2a-4603-9d3b-597d59a354a9

.htaccess

@@ -3,4 +3,7 @@
 </FilesMatch>
 <FilesMatch "(main|static-main|rpc)\.php$">
 	Allow from all
+</FilesMatch>
+<FilesMatch "silverstripe_version$">
+	Deny from all
 </FilesMatch>

web.config

@@ -0,0 +1,11 @@
+<configuration>
+	<system.webServer>
+		<security>
+			<requestFiltering>
+				<hiddenSegments>
+					<add segment="silverstripe_version" />
+				</hiddenSegments>
+			</requestFiltering>
+		</security>
+	</system.webServer>
+</configuration>