From 3c3602fe4e747f3489c917f4de991c9043df9751 Mon Sep 17 00:00:00 2001
From: Tad <tad@spotco.us>
Date: Sat, 16 Sep 2017 14:11:43 -0400
Subject: Harden 25 profiles

---
 etc/macrofusion.profile | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

(limited to 'etc/macrofusion.profile')

diff --git a/etc/macrofusion.profile b/etc/macrofusion.profile
index e53f175f8..be66cf6ee 100644
--- a/etc/macrofusion.profile
+++ b/etc/macrofusion.profile
@@ -16,13 +16,20 @@ include /etc/firejail/disable-programs.inc
 caps.drop all
 ipc-namespace
 net none
+nodvd
 nogroups
 nonewprivs
 noroot
+nosound
+notv
+novideo
+protocol unix
 seccomp
 shell none
 
 #private-bin python3,macrofusion,env,enfuse,exiftool,align_image_stack
 private-dev
-#private-etc fonts
 private-tmp
+
+noexec ${HOME}
+noexec /tmp
-- 
cgit v1.2.3-54-g00ecf