From 437764a4679c5246f218764b79cc9e875ce84fb8 Mon Sep 17 00:00:00 2001
From: Tad <tad@spotco.us>
Date: Mon, 14 Aug 2017 13:40:58 -0400
Subject: Add novideo and noexec /tmp to tor browsers

---
 etc/torbrowser-launcher.profile | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'etc/torbrowser-launcher.profile')

diff --git a/etc/torbrowser-launcher.profile b/etc/torbrowser-launcher.profile
index 8ae0c56c1..763c2d051 100644
--- a/etc/torbrowser-launcher.profile
+++ b/etc/torbrowser-launcher.profile
@@ -11,13 +11,11 @@ whitelist ~/.config/torbrowser
 noblacklist ~/.local/share/torbrowser
 whitelist ~/.local/share/torbrowser
 
-
 include /etc/firejail/disable-common.inc
 include /etc/firejail/disable-devel.inc
 include /etc/firejail/disable-passwdmgr.inc
 include /etc/firejail/disable-programs.inc
 
-
 caps.drop all
 netfilter
 nodvd
@@ -25,6 +23,7 @@ nogroups
 nonewprivs
 noroot
 notv
+novideo
 protocol unix,inet,inet6
 seccomp
 shell none
@@ -35,3 +34,4 @@ private-dev
 private-etc fonts
 private-tmp
 
+noexec /tmp
-- 
cgit v1.2.3-70-g09d2