From c6259375dff79484b9f3d587da9fbfa76a3b68b9 Mon Sep 17 00:00:00 2001
From: Fred-Barclay <Fred-Barclay@users.noreply.github.com>
Date: Wed, 4 Oct 2017 16:24:36 -0500
Subject: Tighten multiple profiles.

This adds whitelist-var-common, machine-id, memory-deny-write-execute,
and noexec home and tmp when possible.
---
 etc/thunderbird.profile | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'etc/thunderbird.profile')

diff --git a/etc/thunderbird.profile b/etc/thunderbird.profile
index 8e878eb1c..db944a2c0 100644
--- a/etc/thunderbird.profile
+++ b/etc/thunderbird.profile
@@ -22,9 +22,11 @@ whitelist ~/.gnupg
 whitelist ~/.icedove
 whitelist ~/.thunderbird
 include /etc/firejail/whitelist-common.inc
+include /etc/firejail/whitelist-var-common.inc
 
 ignore private-tmp
-
+machine-id
+disable-mnt
 read-only ~/.config/mimeapps.list
 
 # allow browsers
-- 
cgit v1.2.3-70-g09d2