From 3c3602fe4e747f3489c917f4de991c9043df9751 Mon Sep 17 00:00:00 2001
From: Tad <tad@spotco.us>
Date: Sat, 16 Sep 2017 14:11:43 -0400
Subject: Harden 25 profiles

---
 etc/dooble.profile | 12 ++++++++++++
 1 file changed, 12 insertions(+)

(limited to 'etc/dooble.profile')

diff --git a/etc/dooble.profile b/etc/dooble.profile
index cbb0f96b8..aabfcd8bb 100644
--- a/etc/dooble.profile
+++ b/etc/dooble.profile
@@ -20,8 +20,20 @@ include /etc/firejail/whitelist-common.inc
 
 caps.drop all
 netfilter
+nodvd
+nogroups
 nonewprivs
 noroot
+notv
+novideo
 protocol unix,inet,inet6,netlink
 seccomp
+shell none
 tracelog
+
+disable-mnt
+private-dev
+private-tmp
+
+noexec ${HOME}
+noexec /tmp
-- 
cgit v1.2.3-54-g00ecf