dawwin
February 7th, 2011, 03:44 PM
Hello,
I wrote simple http server and I've got following question: What should I do to make path to directory/file secure? String ".." (parent directory) is already forbidden but I'm not sure it's all.
My server creates full path like this
www_dir + / + path_from_http_header
www_dir = '/var/www' by default
I wrote simple http server and I've got following question: What should I do to make path to directory/file secure? String ".." (parent directory) is already forbidden but I'm not sure it's all.
My server creates full path like this
www_dir + / + path_from_http_header
www_dir = '/var/www' by default