<snuip>
> I'm considering Amazon S3, but I'm not sure how I can protect the files from
> public access without piping them through the webserver. Additionally, the
> bandwidth could end up costing a couple thousand dollars on S3.
S3 does support limited-use time-based tokens, so you can protect them
by having the user go through your site, ask S3 for a time-based token
and then direct the visitor to the URL with that token. You're not
going to get around the bandwidth issue though unless you use
something like BitTorrent, but I'm not sure if you could protect in
that case and you also run into issues with visitors who do not have
BitTorrent.
-Anthony
--
GMU/IT d- s: a32 C++(++++)$ UL@ P--- L+(++) !E W+++$ !N o? K? w--- !O
M++ V PS+ PE Y PGP t+ !5 X- R tv b++ DI+ D++ G- e++ h---- r+++ y++++**