It's sometimes heard that "index dot html locks the directory it is in". I don't kinda trust in this - there must be a way for someone to explore the contents of the directory even if it has got an index.html? I'm of course now talking about the directories (Or whatever folders they are called...) in the WWW, not the ones in someone's own computer... :-) What is the best way to protect the folders then? ".htpasswd" & ".htaccess" of course do the trick (how easy it is to break this?) at their own way, but using them requires a password from the user.