From 09f1498ae0ee0109dd8f4a6023054d00457ea637 Mon Sep 17 00:00:00 2001
From: Urban Müller
Date: Fri, 3 Aug 2018 15:57:17 +0200
Subject: abort on suspicious filename. did not trigger in a month

---
 it.class | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/it.class b/it.class
index 436fe73..3720263 100644
--- a/it.class
+++ b/it.class
@@ -1168,8 +1168,8 @@ static function mod($a, $n)
 
 static function safe_filename($filename)
 {
-	if (it::match("\./", $filename))
-		it::error(['to' => "mueller", 'title' => "fishy filename $filename"]); # FIXME 2018-08 UM should be fatal after test phase
+	if (it::match("\.\./", $filename))
+		it::fatal(['title' => "../ contained in '$filename', aborted"]);
 
 	return $filename;
 }
-- 
cgit v1.2.3