There doesn't seem to be unanimous agreement with this so I'm throwing it out to you, gang.
I'm designing a site where people can download pdf and ePub files. Should the files themselves be kept in a database or in a folder? I don't like the idea of putting a folder in the public html but perhaps it could go in the directory above that, where I keep the mysql_connect.php. Would that be safe? These files need to be fairly safe from the hackers as they are being sold.
Well...?