Hello, I've blocked the DoT port and the top DoH servers on my network in order to force all my clients to use my own DNS server. It then happened that Firefox was not able to resolve any domain anymore.
After some tracing, it turned out that the main process wants to read /etc/resolv.conf, but is not allowed to because unveil blocks it. I thinks its reasonable to let firefox access resolv.conf. OK? Best Regards, Stefan Index: www/mozilla-firefox/files/unveil.main =================================================================== RCS file: /cvs/ports/www/mozilla-firefox/files/unveil.main,v retrieving revision 1.6 diff -u -p -u -p -r1.6 unveil.main --- www/mozilla-firefox/files/unveil.main 15 Dec 2020 16:41:12 -0000 1.6 +++ www/mozilla-firefox/files/unveil.main 7 Jan 2021 15:17:04 -0000 @@ -10,6 +10,7 @@ /etc/fonts r /etc/machine-id r +/etc/resolv.conf r /usr/local/lib r /usr/local/lib/firefox rx
