This is a minor security risk, because a ls -R at the top level of a large site may consume a lot of resources.
default=NO