Will blocking the use of ../ in query strings always prevent a path traversal attack?

Yes, it's a foolproof solution!No way, it's more complicated than that

That's right! Directories are climbed in many ways. We've got options!

Oh noes! That's not the only way to traverse directories, so webmasters segregate files and restrict privileges.