Hi guys and girls,

I have a folder on my server which I assume is protected with basic authentication / htaccess ( I didn't create it, I just work here ). When files in the folder are served, it is done so as an include via php, within a file in the html folder.

When I want to link from one of the included files to another (to be included in place of the current file) I am doing so via a url such as, "...members.php?page=2", I'm pretty sure this means, that if you were to type that url into a browser you could access the file directly. Is my assumption correct? If so is there a way to access other restriced files without giving away extra info in the url?