From b7d51c2df6fb62d7830bdd3a873fff618adb00dc Mon Sep 17 00:00:00 2001
From: Tad <tad@spotco.us>
Date: Sat, 15 Apr 2017 16:07:25 -0400
Subject: Harden 19 more profiles

---
 etc/gedit.profile | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

(limited to 'etc/gedit.profile')

diff --git a/etc/gedit.profile b/etc/gedit.profile
index 9f4eee9b3..07bdb1bbe 100644
--- a/etc/gedit.profile
+++ b/etc/gedit.profile
@@ -14,17 +14,22 @@ include /etc/firejail/disable-programs.inc
 include /etc/firejail/disable-passwdmgr.inc
 
 caps.drop all
+netfilter
+net none
+no3d
 nogroups
 nonewprivs
 noroot
 nosound
 protocol unix
 seccomp
-netfilter
 shell none
 tracelog
 
 # private-bin gedit
-private-tmp
 private-dev
 # private-etc fonts
+private-tmp
+
+noexec ${HOME}
+noexec /tmp
-- 
cgit v1.2.3-54-g00ecf