Index: library/xotcl/library/comm/Httpd.xotcl
===================================================================
diff -u -N -rd074fd504cab494e949db91a069c370d4db8b44c -rb49c37ce98c6e6e5ab909e8684989ae845627122
--- library/xotcl/library/comm/Httpd.xotcl	(.../Httpd.xotcl)	(revision d074fd504cab494e949db91a069c370d4db8b44c)
+++ library/xotcl/library/comm/Httpd.xotcl	(.../Httpd.xotcl)	(revision b49c37ce98c6e6e5ab909e8684989ae845627122)
@@ -181,9 +181,9 @@
 	#
 	# Avoid directory traversal attacks
 	#
-	set fileName [file normalize $fileName]
+        set fileName [file normalize $fileName]
         if {![string match $root/* $fileName]} {
-          set fileName $root
+	    set fileName $root/
         }
 	#
 	my decode-formData $query