htaccess and Register globals/session SID settings

[barryv4]

In my prequisites install page I got this info and warning

'Zen Cart™ can work with the "Register Globals" setting on or off. However, having it "off" leaves your system somewhat more secure.

If you wish to disable it, and your hosting company won't turn it off for you, you might try adding this to an .htaccess file in the root of your shop (you may have to create the file if you don't already have one):
php_value session.use_trans_sid off
php_value register_globals off
#php_value register_globals off
<Files ".ht*">
deny from all
</Files>
or talk to your hosting company for assistance.'

I've created a ticket (server techs), which has not been dealt with yet but I'm going to assume that they will not want to turn on Register Globals.
So I create an htaccess file in my shop root.
Should it have a password?
SHOULD IT BE DONE BEFORE INSTALLATION or does it not matter?
Anybody know what are the guidlines for creating the htaccess apart from what is stated above?

[kobra]

I've created a ticket (server techs), which has not been dealt with yet but I'm going to assume that they will not want to turn on Register Globals.

If thesed are "off" then you do not require setting this in the .htaccess??

this file is relatively secure as is and you can install first and edit the file later

[barryv4]

Oh ...I just realized that the message says it was on and it would be better off. So that's what I was trying to accomplish.

My server techs said I should create an htaccess files with the following

php_value register_globals 0
php_value session.use_trans_sid 0
php_value output_buffering 4096