I did perform the following steps to secure my woocommerce downloadable files, please let me know if it’s possible to hack those files or I am missing something.
- the downloadable files are located at a different domain on a different linux server.
- Each downloadable file has a unique filename consists of at least 15 randomly created numbers and characters.
- Each downloadable file is located at a separated unique folder which also consists of 15 randomly created numbers and characters.
Indexing disabled to prevent directory browsing
Read more here: How secure my woocommerce downloadable files are?