PHP/Apache Deny folder access to user but not to script

Question

So I have this php web app, and one of my folder contains some files that can be downloaded.

I have a download script that modifies the headers, in order to always o

Answer 1

Deny from all

in the .htaccess or move the files above document root