6 files changed, 14 insertions, 6 deletions

diff --git a/etc/profile-a-l/fdns.profile b/etc/profile-a-l/fdns.profile
index 77e16a56b..4dbf3c194 100644
--- a/etc/profile-a-l/fdns.profile
+++ b/etc/profile-a-l/fdns.profile
@@ -21,6 +21,7 @@ include disable-xdg.inc
 #include whitelist-usr-share-common.inc
 #include whitelist-var-common.inc
 
+apparmor /usr/bin/fdns
 caps.keep kill,net_bind_service,setgid,setuid,sys_admin,sys_chroot
 ipc-namespace
 # netfilter /etc/firejail/webserver.net
@@ -47,4 +48,3 @@ private-etc @tls-ca,fdns
 private-tmp
 
 memory-deny-write-execute
-restrict-namespaces
diff --git a/etc/profile-m-z/vmplayer.profile b/etc/profile-m-z/vmplayer.profile
new file mode 100644
index 000000000..4b386fed7
--- /dev/null
+++ b/etc/profile-m-z/vmplayer.profile
@@ -0,0 +1,8 @@
+# Firejail profile for vmware-player
+# Description: VMWare Workstation Player, used for running virtual machines
+# This file is overwritten after every install/update
+# Persistent local customizations
+include vmplayer.local
+
+# Redirect
+include vmware.profile
diff --git a/etc/profile-m-z/vmware-player.profile b/etc/profile-m-z/vmware-player.profile
index 582a0f693..8be9acc92 100644
--- a/etc/profile-m-z/vmware-player.profile
+++ b/etc/profile-m-z/vmware-player.profile
@@ -1,5 +1,5 @@
 # Firejail profile for vmware-player
-# Description: The industry standard for running multiple operating systems as virtual machines on a single Linux PC.
+# Description: VMWare Workstation Player, used for running virtual machines
 # This file is overwritten after every install/update
 # Persistent local customizations
 include vmware-player.local
diff --git a/etc/profile-m-z/vmware-view.profile b/etc/profile-m-z/vmware-view.profile
index c2fd14811..e924d2119 100644
--- a/etc/profile-m-z/vmware-view.profile
+++ b/etc/profile-m-z/vmware-view.profile
@@ -1,5 +1,5 @@
 # Firejail profile for vmware-view
-# Description: VMware Horizon Client
+# Description: VMware Horizon Client, used as a remote desktop client
 # This file is overwritten after every install/update
 # Persistent local customizations
 include vmware-view.local
diff --git a/etc/profile-m-z/vmware-workstation.profile b/etc/profile-m-z/vmware-workstation.profile
index 6290b57f4..5311cd123 100644
--- a/etc/profile-m-z/vmware-workstation.profile
+++ b/etc/profile-m-z/vmware-workstation.profile
@@ -1,5 +1,5 @@
 # Firejail profile for vmware-workstation
-# Description: The industry standard for running multiple operating systems as virtual machines on a single Linux PC.
+# Description: VMWare Workstation Player, used for running virtual machines
 # This file is overwritten after every install/update
 # Persistent local customizations
 include vmware-workstation.local
diff --git a/etc/profile-m-z/vmware.profile b/etc/profile-m-z/vmware.profile
index 7619ef47b..ed4a47a83 100644
--- a/etc/profile-m-z/vmware.profile
+++ b/etc/profile-m-z/vmware.profile
@@ -1,5 +1,5 @@
 # Firejail profile for vmware
-# Description: The industry standard for running multiple operating systems as virtual machines on a single Linux PC.
+# Description: VMWare Workstation Player, used for running virtual machines
 # This file is overwritten after every install/update
 # Persistent local customizations
 include vmware.local
@@ -11,7 +11,7 @@ noblacklist ${HOME}/.vmware
 noblacklist /usr/lib/vmware
 
 include disable-common.inc
-include disable-devel.inc
+#include disable-devel.inc # gcc is used to compile kernel modules
 include disable-exec.inc
 include disable-interpreters.inc
 include disable-programs.inc