>One of the JS files is very special. I would prefer not to distribute it, but instead, have the client [module] reference this [particular] file on my server.

AFAIK there can be no *real* client-side security for JS running inside the client (think IP-listeners for instance <g>). You could go for "obscurity" by compiling the code into a COM object (some users won't like that at all <bg>) or try to keep the particular functionality on the server - AJAX might help with "presentation" enough to make such an apporach bearable, but that depends much on the needed functionality.

regards

thomas