Yes it's got to be protected... thankfully now I've got secure video streaming for photopost using flowplayer just with apache...
I found a couple of guides and adapted them for photopost video playback, i was going to post a tutorial on it... i didn't want people accessing my flv/mp4 video files via direct download or via embedding on external sites etc so using htaccess and a secure-plugin for flowplayer and a php file and a couple of modified photopost templates i can now watch our members videos without worry...
Flash/flv get to play with a modified template (embed_fla) and if an MP4 video is loaded another template is loaded to play it wide-screen etc.... one little tweak in pp_inc for that... but the rest was ok, the flash player is an object embed and using vars sends a secure token and a time-stamp to a php file located in the secure video directory which then opens up the file to flowplayer...
Works well in photopost and it's protected!
I'll post up a tutorial when i upgrade to PP 8
