The 1.6 change log includes "Updated file upload field to increase security."
Can you expand on what that means? I'm interested in limiting access to uploaded files. After the upgrade, I can still get to the uploaded files from anywhere if I know the URL. I'll look into changing the permissions on the upload folder, but also want to know about the changes in 1.6. Thanks.