Znote
commented
5 years ago Its uneccesary to protect these directories. They should not reveal any confidential information.
However, if you don't want uneccesary snooping around in your sub directories, a good idea is to disable directory listing: http://www.lostsaloon.com/technology/how-to-enable-and-disable-web-directory-listing-on-your-web-server/
gregorecruzeiro
How to protect directory content eg api, layout? im using linux
yourdomain/layout yourdomain/api