Thanks for the response. I have checked the roles. These are definitely students and I have even prohibited further permissions that might have caused this access problem. Do you have any suggestions as to any I might have missed?
Not sure about the gradebook question. I don't use it and this is not a problem I have noticed. It is when students are using the HTML editor and insert an image or a link that I have my problem.
At that point they see the File Browser (as shown in the earlier message I posted) and can find the name of the backup zip files. Then they can use this name, append it to an appropriate url (don 't want to give too much away here
) and when the point the brower at the new url, presto, the entire zip file downloads. It is then only a small matter to extract certain data such as passwords.