Changes

* Does all network access go through the parent (via necko)? If not, what connection are directly initiated from the child?

* Where do origin checks occur? For example, what happens if a web resource redirects to a file:// resource?

* Can a compromised content process make network connections that subvert Firefox network settings (e.g.can sandbox prevent de-anonymization attacks)?