> Having the full path within the filesystem removes some of the > security benefit of not allowing "..", doesn't it? > There's no problem if it's just an implementation detail.
> Conversely, is the > path useful if you can't use it to manipulate anything above the > current dir in the tree? It's useful to isolate it as a sandbox. Maybe we are talking about "mount points" that expose the root of a user selected filesystem subtree (I hope answer is yes... :-) )? -- "Si quieres viajar alrededor del mundo y ser invitado a hablar en un monton de sitios diferentes, simplemente escribe un sistema operativo Unix." – Linus Tordvals, creador del sistema operativo Linux