hello again all,I've still been straining my brain trying to figure out all this from what was basically 0 knowledge on PHP and MySQL ~_~ I have a few questions still. I've looked around alot, but either its about somethign not quite like i need or i just get lost because they are totally not writing it for newbies to understand lol. My questions (some) are:Justsomeguy you mentioned storing the file in a database and using readfile. My questions are is there any major problem storing several files up to 200mb each in mysql or should i just store it in my website like normal. If in database, how do i actually store files like video and audio in the database. None of my books cover this ;_; If like normal, is there a certain place that i should place the directories to prevent direct access or something that i can do to prevent it. My problem with htaccess is that it will promt for a login box, but my site already will work on a login system. I've looked but couldn't find anything explaining how you could make htaccess check if the session is valid and if so letthem access, and if not send them to the usual sign-in/join page that i want displayed.Another quesiton is that if i used the readfile() are there any dangers with that? Someone on php.net forum was saying that readfile is dangerous, and even POST and GET where dangerous, but i couldn't understand why these were. Most likely because my skill level is too low to understand what they are saying lol T_TI'm sorry for bugging you all with this, but its a very important part to my site and holding me back greatly. Not to mention i think if i can just figure out the scheme of thigns i need to follow, learning to write the code right to follow what needs to be done might teach me mysql and php pretty well. At least i hope so lol. Thank you all for you time and help it is all very much appreciated.-kaibaEDIT: Say i have my login system in place with two or more levels of membership. On my links could i do something like this: <a href="<?php if(logged in and if level >= level) domain.com/download.php?id=id</a> Sorry if that didn't make sense, im still very new with php and haven't really wrote much. What iw as trying to say is have it check if they are logged in, and if so then continue with the download script that pulls the information from my database. If they fail one of the two checks then it sends them to the login/signup page. Would that make sense and work? >_< Or maybe if not in the actual link then would be better to put the two checks within the download.php file and if they pass start it and if not then redirect? I don't suppose that stops the direct linking problem, but since it will keep popping up that login box if i use htaccess and making things so difficult im thinking of just sayin F it. Too much of a headache and has me at a standstill atm. If anyone knows a way to make htaccess deny direct access but let my scripts and pages access it then please let me know. Thanks again everyone sorry for my poor skill level and probably obvious questions ._.