Administered by:
@joshbressers It’s probably easier to eliminate path traversal than to rewrite all extant C code, but that doesn’t mean it’d be *easy*. And I’m not sure it’s the right solution. Relative addressing within a file system is incredibly useful. Surely the design flaw is that applications are not by default sandboxed?
@joshbressers and the exhortation to “stop writing C” usually means stop writing *new* C code, which is a much simpler task.
@utterfiction @joshbressers on plan 9, programs like web servers do bind the to-sandbox directory to / within the program. Then the relative paths are the absolute paths automatically, and .. can't break out of the sandbox path. It's actually quite easy to do that if you don't need access to files outside the sandbox directory (you can still find a way around that within your program, but that depends on the program flow)