--- loncom/loncapa_apache.conf	2015/03/11 23:25:33	1.215.2.14
+++ loncom/loncapa_apache.conf	2016/08/05 22:15:50	1.215.2.17
@@ -2,7 +2,7 @@
 ## loncapa_apache.conf -- Apache HTTP LON-CAPA configuration file
 ##
 
-# $Id: loncapa_apache.conf,v 1.215.2.14 2015/03/11 23:25:33 raeburn Exp $
+# $Id: loncapa_apache.conf,v 1.215.2.17 2016/08/05 22:15:50 raeburn Exp $
 
 #
 # LON-CAPA Section (extensions to httpd.conf daemon configuration)
@@ -68,7 +68,7 @@ PerlAuthzHandler	'sub { return OK }'
 </LocationMatch>
 
 # Send proper expires header to avoid unnecessary HTTP request for static content
-<LocationMatch "^(/adm/lonIcons|/adm/jQuery|/adm/jsMath|/res/adm/pages|/ckeditor|/adm/jpicker|/adm/countdown|/adm/spellchecker|/adm/nicescroll|/adm/MathJax)">
+<LocationMatch "^(/adm/lonIcons|/adm/jQuery|/res/adm/pages|/ckeditor|/adm/jpicker|/adm/countdown|/adm/spellchecker|/adm/nicescroll|/adm/MathJax)">
         ExpiresActive On
         ExpiresDefault "access plus 12 hours"
         Header set Cache-Control "public, no-transform"
@@ -281,7 +281,7 @@ ErrorDocument     406 /adm/unauthorized
 ErrorDocument	  500 /adm/errorhandler
 </LocationMatch>
 
-<LocationMatch "^/+webdav/[\w\-]+/[\w\-]+/">
+<LocationMatch "^/+webdav/[\w\-.]+/\w[\w.\-\@]+/">
   <IfModule mod_dav.c>
     <IfModule mod_ssl.c>
       AuthType Basic
@@ -1551,6 +1551,10 @@ AllowOverride None
    DirectoryIndex disabled
 </DirectoryMatch>
 
+<DirectoryMatch "^/home/httpd/html/res/.+/">
+   DirectoryIndex disabled
+</DirectoryMatch>
+
 # ============================================================= Access Handlers
 
 # ------------------------------------------------- Allow server-status reports