>This was removed because the version of dig(1) in base uses pledge(2) >to make restrictions on system calls - in this case it only allows port >53 connections. > >(Technically it could be changed to use a different pledge if -p >is specified, I'm not sure if this is desirable though).
That can certainly be added by people who want -p back. Any change will have to recognize that the default DNS port must go via SOCK_DNS, because it is likely kernel & pf features will head towards managing DNS requests tighter. Someone who wants it should do it carefully :)
