Hosting files from your public web root
My business has been hosting an install package for our software from our vBulletin forum for some time. However we're considering instead hosting it directly off our web server out of a folder in the publicly accessible root.
Considering we do not care who downloads this software package does leading people to a file in a directory in the root pose any security risk to our forums and website which are also hosted on this server?
Any insight is appreciated thank you!
One idea is you may want to see if your server has an Anonymous FTP folder for public use, as that is usually a nice way to allow public downloads without giving access to a directory you'd rather keep private (unless you also want to keep the domain name private, which is visible when accessing via Anonymous FTP). just my 2 cents