Hi.
I fiddled a bit with your patch, and it is now more or less in the new
beta. (1.6b7), although the implemtation is a bit different.
I took the liberty of slightly changing the semantics because I want to be
able to back-port this to 1.5 without breaking existing configurations.
To this end, the /./ /../ (and //) smashing must be explicitly enabled in
the configuration file via the SanitizePath directive. If you do not set
this, mathopd will treat URLs with /./ etc as an error.
Also URLs that end with /. and /.. are not allowed. (As they were with the
original patch.) It could be argued that one should make some attempt to
'fix' these too, but that would be a bit messy. Perhaps someone has any
more thoughts to this?
If no problems turn up I will probably release a new 1.5 version sometime
next week.
Cheers
Michiel
