From: Solene Rapenne Subject: Re: unwind: support wildcard in blacklist To: "Kirill A. Korinsky" Cc: OpenBSD tech , florian@openbsd.org Date: Tue, 25 Jun 2024 00:30:49 +0200 On Mon, Jun 24, 2024 at 10:55:23PM GMT, Kirill A. Korinsky wrote: > Florian, tech@, > > Here a diff which introduced support of wildcard inside unwind's domain > blacklist. Wildcard supported only at begining and as '*' which should be > followed by '.'. > > So, after that this two lines: > > google.com > *.google.com > > blocks any requests to google.com and all its subdomains. > I do not have opinion about the diff itself, but I appreciate the feature and see a potential use if it could also be toggled to work as an allow list where you explicitely list which domains could be resolved, denying every other domains not matching the allow list.