Hi,
With PhpWebGallery, it is possible to limit some photo to a group of user (only member of this group will be able to view the photograph). But what about the security of these files ? Since the categories have often the same names as the directory, it is easy to browse them and view the photo. So will it be possible to add a kind of .htaccess in some directories, so that the files can be viewed only via PhpWebGallery interface ? A simplier solution would be to add a index.php in all subdirectories, but it is not really a solution...

The other point is the clear password in "/include/mysql.inc.php". As it is a php file, it will be interpreted by the web server so the password are not readable, but will it be possible to download the file with a "web downloader" (aspirateur web) as memoweb or kapere ? I've just tried kapere: it download the php file, but without the password. This reassuring.