http connection: perform sanitisation on the provided filename

This prevents potential path traversal by malicious actors and a denial-of-service attack as well as unnoticed arbitrary data uploads.

Courtesy Allar Lauk of TalTech University (Estonia)