I am working in an internet application developed in ASP.net. One of the menu in my site allows users to download a zip file from my webserver. Accidntally the status bar showed the path of the file for few days. Now without login (just to type or modify the url they got from the status bar) they can directly come to the folder which is in my web server and down load the files breaching my security.
Now I want to do 2 things to fix this problem permenantly.
1. What ever URL they type , it will always move to my login page.
2. www.abc.com/menu1/download/file/file20040412.zip must go to www.abc.com