harden mpg123.profile (#3438)

* harden mpg123.profile

* drop nodvd from mpg123.profile

etc/profile-m-z/mpg123.profile

@@ -1,13 +1,13 @@
 # Firejail profile for mpg123
 # Description: MPEG audio player/decoder
 # This file is overwritten after every install/update
+quiet
 # Persistent local customizations
 include mpg123.local
 # Persistent global definitions
 include globals.local
 
 noblacklist ${MUSIC}
-noblacklist ${VIDEOS}
 
 include disable-common.inc
 include disable-devel.inc
@@ -23,19 +23,23 @@ include whitelist-var-common.inc
 apparmor
 caps.drop all
 netfilter
+no3d
 nogroups
 nonewprivs
 noroot
+notv
 nou2f
+novideo
 protocol unix,inet,inet6,netlink
 seccomp
 shell none
+tracelog
 
 #private-bin mpg123*
 private-dev
 private-tmp
 
-memory-deny-write-execute
-
 dbus-user none
 dbus-system none
+
+memory-deny-write-execute