Dec 05, 2011 03:51 PM|bbcompent1|LINK
What I suggest is anything that you want to be publically available, leave that in the site root. Anything that needs to be secured, place into a sub folder named secure for example and set the permissions on that folder. Try to avoid securing common stuff
like CSS and image files for example.