security: clean repository without media files and sensitive data

- Removed area/ directory with 816MB of media files
- Removed sensitive FTP credentials from Git history
- Implemented .env.upload system for secure deployments
- Added comprehensive .gitignore for future protection

This commit represents a clean slate with all sensitive data removed.

backend/storage/.htaccess

@@ -0,0 +1,11 @@
+# Zugriff auf Storage-Dateien verbieten
+<Files "*.json">
+    Order allow,deny
+    Deny from all
+</Files>
+
+# Zugriff auf Log-Dateien verbieten
+<Files "*.log">
+    Order allow,deny
+    Deny from all
+</Files>