From f97e4fd97064b7f6a6101c1c60d5f88538d89ac6 Mon Sep 17 00:00:00 2001
From: Jose Riha <jose1711@gmail.com>
Date: Sat, 15 Jun 2019 15:56:08 +0200
Subject: Apply suggestions from code review

Co-Authored-By: rusty-snake <print_hello_world+GitHub@protonmail.com>
---
 etc/udiskie.profile | 14 ++++++++++++--
 1 file changed, 12 insertions(+), 2 deletions(-)

diff --git a/etc/udiskie.profile b/etc/udiskie.profile
index 37b5d9a64..7960b4bc3 100644
--- a/etc/udiskie.profile
+++ b/etc/udiskie.profile
@@ -1,7 +1,6 @@
 # Firejail profile for udiskie
 # Description: Removable disk automounter using udisks
 # This file is overwritten after every install/update
-# quiet
 # Persistent local customizations
 include udiskie.local
 # Persistent global definitions
@@ -14,22 +13,33 @@ include disable-common.inc
 include disable-devel.inc
 include disable-exec.inc
 include disable-interpreters.inc
-include disable-passwdmgr.inc include disable-programs.inc
+include disable-passwdmgr.inc
+include disable-programs.inc
 include disable-xdg.inc
 
+include whitelist-var-common.inc
+
 caps.drop all
 machine-id
 net none
+no3d
 nogroups
 nonewprivs
 noroot
+nosound
 notv
 nou2f
 novideo
+protocol unix
 seccomp
 shell none
 tracelog
 
+private-bin awk,cut,dbus-send,egrep,file,grep,head,python,python3,readlink,sed,sh,udiskie,uname,which,xdg-mime,xdg-open,xprop
+# add your configured file browser in udiskie.local, e. g.
+# private-bin nautilus
+# private-bin thunar
 private-cache
 private-dev
+private-etc ld.so.cache,ld.so.preload,ld.so.conf,ld.so.conf.d,locale,locale.alias,locale.conf,localtime,alternatives,mime.types,xdg
 private-tmp
-- 
cgit v1.2.3-70-g09d2