1 |
On 06/03/2023 10:06, Michael wrote: |
2 |
> On Monday, 6 March 2023 08:24:35 GMT Wols Lists wrote: |
3 |
>> On 06/03/2023 08:08, Neil Bothwick wrote: |
4 |
>>> On Mon, 6 Mar 2023 07:54:51 +0000, Wols Lists wrote: |
5 |
>>>> There's another file - can't remember its name - that tells your |
6 |
>>>> resolver what to try in what order - the hosts file, dns, what dhcp |
7 |
>>>> told you, etc etc, so your resolver might not be using dns the way you |
8 |
>>>> think. |
9 |
>>> |
10 |
>>> Do you mean /etc/nsswitch.conf? |
11 |
>> |
12 |
>> Ah yes. Any idea why Firefox seems to ignore it? Whenever I try to |
13 |
>> browse to local machines in /etc/hosts, firefox gives me a google search |
14 |
>> page which is a bloody nuisance. If I type a VALID ADDRESS in the |
15 |
>> ADDRESS BAR, that's where I expect to go! Not some damn random search page! |
16 |
>> |
17 |
>> Cheers, |
18 |
>> Wol |
19 |
> |
20 |
> I suspect the behaviour you noticed is related to FF functionality like TRR |
21 |
> (Trusted Recursive Resolver) farming all your DNS queries over to the |
22 |
> cloudfarce honeypot. |
23 |
> |
24 |
> Have a look here if you want to disable it: |
25 |
> |
26 |
> https://wiki.archlinux.org/title/Firefox/Privacy#Disable/ |
27 |
> enforce_'Trusted_Recursive_Resolver' |
28 |
|
29 |
Thanks. That led me to network.trr.allow-rfc1918, which provided your |
30 |
name has a dot in it ! appears to resolve addresses from /etc/hosts. I |
31 |
guess that actually means firefox uses your local resolver first, and if |
32 |
it returns an rfc1918 address, will use it. |
33 |
|
34 |
Surely that should be the default! It shouldn't break a PRIVATE network |
35 |
in the name of security !!! |
36 |
|
37 |
Cheers, |
38 |
Wol |