- From: <piranna@gmail.com>
- Date: Tue, 16 Jul 2013 18:00:17 +0200
- To: Eric U <ericu@google.com>
- Cc: Jonas Sicking <jonas@sicking.cc>, Kinuko Yasuda <kinuko@chromium.org>, Webapps WG <public-webapps@w3.org>
> Having the full path within the filesystem removes some of the > security benefit of not allowing "..", doesn't it? > There's no problem if it's just an implementation detail. > Conversely, is the > path useful if you can't use it to manipulate anything above the > current dir in the tree? It's useful to isolate it as a sandbox. Maybe we are talking about "mount points" that expose the root of a user selected filesystem subtree (I hope answer is yes... :-) )? -- "Si quieres viajar alrededor del mundo y ser invitado a hablar en un monton de sitios diferentes, simplemente escribe un sistema operativo Unix." – Linus Tordvals, creador del sistema operativo Linux
Received on Tuesday, 16 July 2013 16:01:08 UTC