Agree.
Do you really want to give the user the ability to erase your hard disk?
Even so, this would not be the type of thing you would do from a JSP, but rather in a
servlet that the JSP would submit to. But really, you do
not want to open up this type of security hole.