Most secure method is keeping uploaded files outside public_html. You can access them via php script that verifies user privileges.
Most secure method is keeping uploaded files outside public_html. You can access them via php script that verifies user privileges.