Merge pull request felixge#28 from nicokruger/master

Global leak in "fp"

lib/paperboy.js

@@ -12,7 +12,7 @@ exports.filepath = function (webroot, url) {
   // Strip nullbytes (they can make us believe that the file extension isn't the one it really is)
   url = url.replace(/\0/g, '');
   // Append index.html if path ends with '/'
-  fp = path.normalize(path.join(webroot, (url.match(/\/$/)=='/')  ? url+'index.html' : url));
+  var fp = path.normalize(path.join(webroot, (url.match(/\/$/)=='/')  ? url+'index.html' : url));
   // Sanitize input, make sure people can't use .. to get above webroot
   if (webroot[webroot.length - 1] !== pathSep) webroot += pathSep;
   if (fp.substr(0, webroot.length) != webroot)