Fix notv placement

2026-05-21 06:45:29 -06:00 · 2017-08-11 11:23:21 -04:00 · 2017-08-11 11:23:21 -04:00 · 71f838b5ba
commit 71f838b5ba
parent b1479a3730
284 changed files with 290 additions and 292 deletions
--- a/etc/0ad.profile
+++ b/etc/0ad.profile
@ -27,6 +27,7 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -39,4 +40,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/2048-qt.profile
+++ b/etc/2048-qt.profile
@ -19,6 +19,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -30,4 +31,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/7z.profile
+++ b/etc/7z.profile
@ -12,7 +12,7 @@ ignore noroot
 net none
 no3d
 nosound
-nosound
+notv
 novideo
 shell none
 tracelog
@ -20,4 +20,3 @@ tracelog
 private-dev

 include /etc/firejail/default.profile
-notv
--- a/etc/Cryptocat.profile
+++ b/etc/Cryptocat.profile
@ -18,10 +18,10 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 protocol unix,inet,inet6,netlink
 seccomp
 shell none

 private-dev
 private-tmp
-notv
--- a/etc/Mathematica.profile
+++ b/etc/Mathematica.profile
@ -23,5 +23,5 @@ include /etc/firejail/whitelist-common.inc
 caps.drop all
 nonewprivs
 noroot
-seccomp
 notv
+seccomp
--- a/etc/Thunar.profile
+++ b/etc/Thunar.profile
@ -21,9 +21,9 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
 shell none
 tracelog
-notv
--- a/etc/Xephyr.profile
+++ b/etc/Xephyr.profile
@ -27,6 +27,7 @@ nonewprivs
 # In noroot mode, Xephyr cannot create a socket in the real /tmp/.X11-unix.
 # noroot
 nosound
+notv
 protocol unix
 seccomp
 shell none
@ -38,4 +39,3 @@ private
 private-dev
 # private-etc ld.so.conf,ld.so.cache,resolv.conf,host.conf,nsswitch.conf,gai.conf,hosts,hostname
 private-tmp
-notv
--- a/etc/Xvfb.profile
+++ b/etc/Xvfb.profile
@ -28,6 +28,7 @@ nonewprivs
 # In noroot mode, Xvfb cannot create a socket in the real /tmp/.X11-unix.
 #noroot
 nosound
+notv
 protocol unix
 seccomp
 shell none
@ -39,4 +40,3 @@ private
 private-dev
 private-etc ld.so.conf,ld.so.cache,resolv.conf,host.conf,nsswitch.conf,gai.conf,hosts,hostname
 private-tmp
-notv
--- a/etc/abrowser.profile
+++ b/etc/abrowser.profile
@ -39,9 +39,9 @@ caps.drop all
 netfilter
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6,netlink
 seccomp
 tracelog

 # private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse
-notv
--- a/etc/akregator.profile
+++ b/etc/akregator.profile
@ -19,6 +19,7 @@ no3d
 nogroups
 nonewprivs
 noroot
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -30,4 +31,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/amarok.profile
+++ b/etc/amarok.profile
@ -16,6 +16,7 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6
 # seccomp
 shell none
@ -24,4 +25,3 @@ shell none
 private-dev
 # private-etc none
 private-tmp
-notv
--- a/etc/android-studio.profile
+++ b/etc/android-studio.profile
@ -23,6 +23,7 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -32,4 +33,3 @@ private-dev
 # private-tmp

 noexec /tmp
-notv
--- a/etc/apktool.profile
+++ b/etc/apktool.profile
@ -18,6 +18,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -27,4 +28,3 @@ private-dev

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/arduino.profile
+++ b/etc/arduino.profile
@ -21,6 +21,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -30,4 +31,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/ark.profile
+++ b/etc/ark.profile
@ -18,6 +18,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -27,4 +28,3 @@ shell none
 private-dev
 # private-etc
 private-tmp
-notv
--- a/etc/arm.profile
+++ b/etc/arm.profile
@ -24,6 +24,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -38,4 +39,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/atom-beta.profile
+++ b/etc/atom-beta.profile
@ -18,6 +18,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix,inet,inet6,netlink
 seccomp
@ -25,4 +26,3 @@ shell none

 private-dev
 private-tmp
-notv
--- a/etc/atom.profile
+++ b/etc/atom.profile
@ -18,6 +18,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix,inet,inet6,netlink
 seccomp
@ -25,4 +26,3 @@ shell none

 private-dev
 private-tmp
-notv
--- a/etc/atool.profile
+++ b/etc/atool.profile
@ -19,6 +19,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -29,4 +30,3 @@ tracelog
 private-dev
 private-etc none
 private-tmp
-notv
--- a/etc/atril.profile
+++ b/etc/atril.profile
@ -18,6 +18,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -27,4 +28,3 @@ tracelog
 private-bin atril, atril-previewer, atril-thumbnailer
 private-dev
 private-tmp
-notv
--- a/etc/audacious.profile
+++ b/etc/audacious.profile
@ -17,6 +17,7 @@ caps.drop all
 netfilter
 nonewprivs
 noroot
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -25,4 +26,3 @@ tracelog

 private-bin audacious
 private-tmp
-notv
--- a/etc/audacity.profile
+++ b/etc/audacity.profile
@ -18,6 +18,7 @@ no3d
 nogroups
 nonewprivs
 noroot
+notv
 novideo
 protocol unix
 seccomp
@ -30,4 +31,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/aweather.profile
+++ b/etc/aweather.profile
@ -22,6 +22,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -31,4 +32,3 @@ tracelog
 private-bin aweather
 private-dev
 private-tmp
-notv
--- a/etc/baloo_file.profile
+++ b/etc/baloo_file.profile
@ -22,6 +22,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 # Baloo makes ioprio_set system calls, which are blacklisted by default.
@ -39,4 +40,3 @@ noexec /tmp
 # read-only  ${HOME}
 # read-write ${HOME}/.local/share
 # noexec     ${HOME}/.local/share
-notv
--- a/etc/baobab.profile
+++ b/etc/baobab.profile
@ -18,6 +18,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -29,4 +30,3 @@ private-tmp
 memory-deny-write-execute
 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/bibletime.profile
+++ b/etc/bibletime.profile
@ -28,6 +28,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix,inet,inet6,netlink
 seccomp
@ -38,4 +39,3 @@ tracelog
 private-dev
 private-etc fonts,resolv.conf,sword,sword.conf,passwd
 private-tmp
-notv
--- a/etc/bitlbee.profile
+++ b/etc/bitlbee.profile
@ -17,6 +17,7 @@ netfilter
 no3d
 nonewprivs
 nosound
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -29,4 +30,3 @@ private-tmp
 read-write /var/lib/bitlbee

 noexec /tmp
-notv
--- a/etc/bleachbit.profile
+++ b/etc/bleachbit.profile
@ -18,6 +18,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -31,4 +32,3 @@ shell none
 memory-deny-write-execute
 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/blender.profile
+++ b/etc/blender.profile
@ -17,6 +17,7 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6,netlink
 seccomp
 shell none
@ -26,4 +27,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/bless.profile
+++ b/etc/bless.profile
@ -19,6 +19,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -30,4 +31,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/brasero.profile
+++ b/etc/brasero.profile
@ -17,6 +17,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -31,4 +32,3 @@ tracelog
 memory-deny-write-execute
 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/brave.profile
+++ b/etc/brave.profile
@ -30,8 +30,8 @@ include /etc/firejail/whitelist-common.inc
 netfilter
 # nonewprivs
 # noroot
+notv
 # protocol unix,inet,inet6,netlink
 # seccomp

 # disable-mnt
-notv
--- a/etc/caja.profile
+++ b/etc/caja.profile
@ -22,6 +22,7 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 protocol unix
 seccomp
 shell none
@ -32,4 +33,3 @@ tracelog
 # private-dev
 # private-etc fonts
 # private-tmp
-notv
--- a/etc/calibre.profile
+++ b/etc/calibre.profile
@ -20,6 +20,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -32,4 +33,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/catfish.profile
+++ b/etc/catfish.profile
@ -18,6 +18,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -29,4 +30,3 @@ tracelog
 # private-bin bash,catfish,env,locate,ls,mlocate,python,python2,python2.7,python3,python3.5,python3.5m,python3m
 # private-dev
 # private-tmp
-notv
--- a/etc/cherrytree.profile
+++ b/etc/cherrytree.profile
@ -21,6 +21,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix,inet,inet6,netlink
 seccomp
@ -32,4 +33,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/chromium.profile
+++ b/etc/chromium.profile
@ -28,6 +28,7 @@ include /etc/firejail/whitelist-common.inc
 caps.keep sys_chroot,sys_admin
 netfilter
 nogroups
+notv
 shell none

 private-dev
@ -35,4 +36,3 @@ private-dev

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/claws-mail.profile
+++ b/etc/claws-mail.profile
@ -20,10 +20,10 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 protocol unix,inet,inet6
 seccomp
 shell none

 private-dev
 private-tmp
-notv
--- a/etc/clementine.profile
+++ b/etc/clementine.profile
@ -15,8 +15,8 @@ include /etc/firejail/disable-programs.inc
 caps.drop all
 nonewprivs
 noroot
+notv
 novideo
 protocol unix,inet,inet6
 # Clementine makes ioprio_set system calls, which are blacklisted by default.
 seccomp.drop mount,umount2,ptrace,kexec_load,kexec_file_load,name_to_handle_at,open_by_handle_at,create_module,init_module,finit_module,delete_module,iopl,ioperm,swapon,swapoff,syslog,process_vm_readv,process_vm_writev,sysfs,_sysctl,adjtimex,clock_adjtime,lookup_dcookie,perf_event_open,fanotify_init,kcmp,add_key,request_key,keyctl,uselib,acct,modify_ldt,pivot_root,io_setup,io_destroy,io_getevents,io_submit,io_cancel,remap_file_pages,mbind,get_mempolicy,set_mempolicy,migrate_pages,move_pages,vmsplice,chroot,tuxcall,reboot,mfsservctl,get_kernel_syms,bpf,clock_settime,personality,process_vm_writev,query_module,settimeofday,stime,umount,userfaultfd,ustat,vm86,vm86old
-notv
--- a/etc/clipit.profile
+++ b/etc/clipit.profile
@ -20,6 +20,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -31,4 +32,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/cmus.profile
+++ b/etc/cmus.profile
@ -16,10 +16,10 @@ caps.drop all
 netfilter
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6
 seccomp
 shell none

 private-bin cmus
 private-etc group
-notv
--- a/etc/conkeror.profile
+++ b/etc/conkeror.profile
@ -27,6 +27,6 @@ caps.drop all
 netfilter
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6
 seccomp
-notv
--- a/etc/corebird.profile
+++ b/etc/corebird.profile
@ -14,6 +14,6 @@ include /etc/firejail/disable-programs.inc
 caps.drop all
 netfilter
 noroot
+notv
 protocol unix,inet,inet6
 seccomp
-notv
--- a/etc/cpio.profile
+++ b/etc/cpio.profile
@ -20,9 +20,9 @@ net none
 net none
 no3d
 nosound
+notv
 seccomp
 shell none
 tracelog

 private-dev
-notv
--- a/etc/curl.profile
+++ b/etc/curl.profile
@ -21,6 +21,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 protocol unix,inet,inet6
 seccomp
 shell none
@ -32,4 +33,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/cvlc.profile
+++ b/etc/cvlc.profile
@ -17,6 +17,7 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6,netlink
 seccomp
 shell none
@ -28,4 +29,3 @@ private-dev
 private-tmp

 memory-deny-write-execute
-notv
--- a/etc/cyberfox.profile
+++ b/etc/cyberfox.profile
@ -55,6 +55,7 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6,netlink
 seccomp
 shell none
@ -68,4 +69,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/darktable.profile
+++ b/etc/darktable.profile
@ -19,6 +19,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -29,4 +30,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/deadbeef.profile
+++ b/etc/deadbeef.profile
@ -18,6 +18,7 @@ no3d
 nogroups
 nonewprivs
 noroot
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -28,4 +29,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/default.profile
+++ b/etc/default.profile
@ -16,13 +16,13 @@ include /etc/firejail/disable-programs.inc
 caps.drop all
 # ipc-namespace
 netfilter
+# no3d
 # nogroups
 nonewprivs
 noroot
 # nosound
-# novideo
 # notv
-# no3d
+# novideo
 protocol unix,inet,inet6
 seccomp
 # shell none
--- a/etc/deluge.profile
+++ b/etc/deluge.profile
@ -22,6 +22,7 @@ netfilter
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -31,4 +32,3 @@ shell none
 # private-bin deluge,sh,python,uname
 private-dev
 private-tmp
-notv
--- a/etc/dex2jar.profile
+++ b/etc/dex2jar.profile
@ -19,6 +19,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -28,4 +29,3 @@ private-dev

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/dia.profile
+++ b/etc/dia.profile
@ -19,6 +19,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -30,4 +31,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/digikam.profile
+++ b/etc/digikam.profile
@ -19,6 +19,7 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6,netlink
 seccomp
 # seccomp.keep fallocate,getrusage,openat,access,arch_prctl,bind,brk,chdir,chmod,clock_getres,clone,close,connect,dup2,dup3,eventfd2,execve,fadvise64,fcntl,fdatasync,flock,fstat,fstatfs,ftruncate,futex,getcwd,getdents,getegid,geteuid,getgid,getpeername,getpgrp,getpid,getppid,getrandom,getresgid,getresuid,getrlimit,getsockname,getsockopt,gettid,getuid,inotify_add_watch,inotify_init,inotify_init1,inotify_rm_watch,ioctl,lseek,lstat,madvise,mbind,memfd_create,mkdir,mmap,mprotect,msync,munmap,nanosleep,open,pipe,pipe2,poll,ppoll,prctl,pread64,pwrite64,read,readlink,readlinkat,recvfrom,recvmsg,rename,rt_sigaction,rt_sigprocmask,rt_sigreturn,sched_getaffinity,sched_getparam,sched_get_priority_max,sched_get_priority_min,sched_getscheduler,sched_setscheduler,sched_yield,sendmsg,sendto,setgid,setresgid,setresuid,set_robust_list,setsid,setsockopt,set_tid_address,setuid,shmat,shmctl,shmdt,shmget,shutdown,socket,stat,statfs,sysinfo,timerfd_create,umask,uname,unlink,wait4,waitid,write,writev,fchmod,fchown,unshare,exit,exit_group
@ -31,4 +32,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/dillo.profile
+++ b/etc/dillo.profile
@ -23,7 +23,7 @@ caps.drop all
 netfilter
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6
 seccomp
 tracelog
-notv
--- a/etc/dino.profile
+++ b/etc/dino.profile
@ -24,6 +24,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -37,4 +38,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/display.profile
+++ b/etc/display.profile
@ -17,6 +17,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 protocol unix
 seccomp
 shell none
@ -26,4 +27,3 @@ private-bin display
 private-dev
 private-etc none
 private-tmp
-notv
--- a/etc/dnscrypt-proxy.profile
+++ b/etc/dnscrypt-proxy.profile
@ -15,8 +15,8 @@ include /etc/firejail/disable-programs.inc

 no3d
 nosound
+notv
 seccomp.drop mount,umount2,ptrace,kexec_load,kexec_file_load,open_by_handle_at,init_module,finit_module,delete_module,iopl,ioperm,swapon,swapoff,syslog,process_vm_readv,process_vm_writev,sysfs,_sysctl,adjtimex,clock_adjtime,lookup_dcookie,perf_event_open,fanotify_init,kcmp,add_key,request_key,keyctl,uselib,acct,modify_ldt,pivot_root,io_setup,io_destroy,io_getevents,io_submit,io_cancel,remap_file_pages,mbind,get_mempolicy,set_mempolicy,migrate_pages,move_pages,vmsplice,perf_event_open

 private
 private-dev
-notv
--- a/etc/dnsmasq.profile
+++ b/etc/dnsmasq.profile
@ -18,10 +18,10 @@ netfilter
 no3d
 nonewprivs
 nosound
+notv
 protocol unix,inet,inet6,netlink
 seccomp

 disable-mnt
 private
 private-dev
-notv
--- a/etc/dolphin.profile
+++ b/etc/dolphin.profile
@ -22,6 +22,7 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 novideo
 protocol unix
 seccomp
@ -31,4 +32,3 @@ shell none
 # private-dev
 # private-etc
 # private-tmp
-notv
--- a/etc/dosbox.profile
+++ b/etc/dosbox.profile
@ -17,6 +17,7 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6
 seccomp
 shell none
@ -25,4 +26,3 @@ tracelog
 private-bin dosbox
 private-dev
 private-tmp
-notv
--- a/etc/dragon.profile
+++ b/etc/dragon.profile
@ -17,6 +17,7 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -29,4 +30,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/dropbox.profile
+++ b/etc/dropbox.profile
@ -30,6 +30,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -39,4 +40,3 @@ private-dev
 private-tmp

 noexec /tmp
-notv
--- a/etc/electron.profile
+++ b/etc/electron.profile
@ -15,6 +15,6 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6,netlink
 seccomp
-notv
--- a/etc/elinks.profile
+++ b/etc/elinks.profile
@ -21,6 +21,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -31,4 +32,3 @@ tracelog
 private-dev
 # private-etc none
 private-tmp
-notv
--- a/etc/emacs.profile
+++ b/etc/emacs.profile
@ -17,6 +17,6 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6
 seccomp
-notv
--- a/etc/empathy.profile
+++ b/etc/empathy.profile
@ -15,6 +15,6 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6
 seccomp
-notv
--- a/etc/enchant.profile
+++ b/etc/enchant.profile
@ -18,6 +18,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 protocol unix
 seccomp
 shell none
@ -27,4 +28,3 @@ tracelog
 # private-dev
 # private-etc fonts
 # private-tmp
-notv
--- a/etc/engrampa.profile
+++ b/etc/engrampa.profile
@ -17,6 +17,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -27,4 +28,3 @@ tracelog
 private-dev
 # private-etc fonts
 # private-tmp
-notv
--- a/etc/eog.profile
+++ b/etc/eog.profile
@ -22,6 +22,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -35,4 +36,3 @@ private-tmp
 memory-deny-write-execute
 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/eom.profile
+++ b/etc/eom.profile
@ -20,6 +20,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -32,4 +33,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/epiphany.profile
+++ b/etc/epiphany.profile
@ -25,6 +25,6 @@ include /etc/firejail/whitelist-common.inc
 caps.drop all
 netfilter
 nonewprivs
+notv
 protocol unix,inet,inet6
 seccomp
-notv
--- a/etc/etr.profile
+++ b/etc/etr.profile
@ -20,6 +20,7 @@ net none
 nogroups
 nonewprivs
 noroot
+notv
 protocol unix,netlink
 seccomp
 shell none
@ -28,4 +29,3 @@ shell none
 private-dev
 # private-etc none
 private-tmp
-notv
--- a/etc/evince.profile
+++ b/etc/evince.profile
@ -19,6 +19,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -34,4 +35,3 @@ private-etc fonts
 memory-deny-write-execute
 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/evolution.profile
+++ b/etc/evolution.profile
@ -27,6 +27,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 protocol unix,inet,inet6
 seccomp
 shell none
@ -36,4 +37,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/exiftool.profile
+++ b/etc/exiftool.profile
@ -24,6 +24,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 protocol unix
 seccomp
 shell none
@ -33,4 +34,3 @@ tracelog
 private-dev
 private-etc none
 private-tmp
-notv
--- a/etc/fbreader.profile
+++ b/etc/fbreader.profile
@ -17,6 +17,7 @@ netfilter
 nonewprivs
 noroot
 nosound
+notv
 protocol unix,inet,inet6
 seccomp
 shell none
@ -24,4 +25,3 @@ shell none
 private-bin fbreader,FBReader
 private-dev
 private-tmp
-notv
--- a/etc/feh.profile
+++ b/etc/feh.profile
@ -17,6 +17,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 protocol unix
 seccomp
 shell none
@ -25,4 +26,3 @@ private-bin feh
 private-dev
 private-etc feh
 private-tmp
-notv
--- a/etc/file-roller.profile
+++ b/etc/file-roller.profile
@ -18,6 +18,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -32,4 +33,3 @@ private-dev
 memory-deny-write-execute
 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/file.profile
+++ b/etc/file.profile
@ -19,6 +19,7 @@ no3d
 nogroups
 nonewprivs
 nosound
+notv
 protocol unix
 seccomp
 shell none
@ -28,4 +29,3 @@ x11 none
 private-bin file
 private-dev
 private-etc magic.mgc,magic,localtime
-notv
--- a/etc/filezilla.profile
+++ b/etc/filezilla.profile
@ -17,6 +17,7 @@ netfilter
 nonewprivs
 noroot
 nosound
+notv
 protocol unix,inet,inet6
 seccomp
 shell none
@ -24,4 +25,3 @@ shell none
 private-bin filezilla,uname,sh,bash,dash,python,lsb_release,fzputtygen,fzsftp
 private-dev
 private-tmp
-notv
--- a/etc/firefox.profile
+++ b/etc/firefox.profile
@ -55,6 +55,7 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6,netlink
 seccomp
 shell none
@ -68,4 +69,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/flashpeak-slimjet.profile
+++ b/etc/flashpeak-slimjet.profile
@ -32,6 +32,6 @@ caps.drop all
 netfilter
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6,netlink
 seccomp
-notv
--- a/etc/flowblade.profile
+++ b/etc/flowblade.profile
@ -18,6 +18,7 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6,netlink
 seccomp
 shell none
@ -27,4 +28,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/fontforge.profile
+++ b/etc/fontforge.profile
@ -18,6 +18,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix
 seccomp
@ -28,4 +29,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/fossamail.profile
+++ b/etc/fossamail.profile
@ -17,5 +17,6 @@ whitelist ~/.fossamail
 whitelist ~/.gnupg
 include /etc/firejail/whitelist-common.inc

-include /etc/firejail/firefox.profile
 notv
+
+include /etc/firejail/firefox.profile
--- a/etc/franz.profile
+++ b/etc/franz.profile
@ -27,6 +27,7 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6,netlink
 seccomp
 shell none
@ -37,4 +38,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/frozen-bubble.profile
+++ b/etc/frozen-bubble.profile
@ -20,6 +20,7 @@ net none
 nogroups
 nonewprivs
 noroot
+notv
 protocol unix,netlink
 seccomp
 shell none
@ -28,4 +29,3 @@ shell none
 private-dev
 # private-etc none
 private-tmp
-notv
--- a/etc/gajim.profile
+++ b/etc/gajim.profile
@ -31,6 +31,7 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6
 seccomp
 shell none
@ -42,4 +43,3 @@ private-dev
 # private-tmp
 # Allow the local python 2.7 site packages, in case any plugins are using these
 read-only ${HOME}/.local/lib/python2.7/site-packages/
-notv
--- a/etc/galculator.profile
+++ b/etc/galculator.profile
@ -22,6 +22,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 protocol unix
 seccomp
 shell none
@ -31,4 +32,3 @@ private-bin galculator
 private-dev
 private-etc fonts
 private-tmp
-notv
--- a/etc/geany.profile
+++ b/etc/geany.profile
@ -18,6 +18,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -25,4 +26,3 @@ shell none

 private-dev
 private-tmp
-notv
--- a/etc/gedit.profile
+++ b/etc/gedit.profile
@ -21,6 +21,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 protocol unix
 seccomp
 shell none
@ -33,4 +34,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/geeqie.profile
+++ b/etc/geeqie.profile
@ -19,6 +19,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 protocol unix
 seccomp
 shell none
@ -26,4 +27,3 @@ shell none
 # private-bin geeqie
 private-dev
 # private-etc X11
-notv
--- a/etc/gimp.profile
+++ b/etc/gimp.profile
@ -17,6 +17,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 protocol unix
 seccomp
 shell none
@ -28,4 +29,3 @@ private-tmp
 # if you are not using external plugins, you can enable noexec statement below
 # noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/git.profile
+++ b/etc/git.profile
@ -27,9 +27,9 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 protocol unix,inet,inet6
 seccomp
 shell none

 private-dev
-notv
--- a/etc/gitg.profile
+++ b/etc/gitg.profile
@ -20,6 +20,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -31,4 +32,3 @@ private-tmp
 memory-deny-write-execute
 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/gitter.profile
+++ b/etc/gitter.profile
@ -18,6 +18,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 protocol unix,inet,inet6,netlink
 seccomp
 shell none
@ -25,4 +26,3 @@ shell none
 private-bin gitter
 private-dev
 private-tmp
-notv
--- a/etc/gjs.profile
+++ b/etc/gjs.profile
@ -22,6 +22,7 @@ netfilter
 nogroups
 nonewprivs
 noroot
+notv
 protocol unix,inet,inet6
 seccomp
 shell none
@ -31,4 +32,3 @@ tracelog
 private-dev
 # private-etc fonts
 private-tmp
-notv
--- a/etc/globaltime.profile
+++ b/etc/globaltime.profile
@ -19,6 +19,7 @@ nogroups
 nonewprivs
 noroot
 nosound
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -30,4 +31,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/etc/gnome-2048.profile
+++ b/etc/gnome-2048.profile
@ -21,6 +21,7 @@ netfilter
 no3d
 nonewprivs
 noroot
+notv
 novideo
 protocol unix,inet,inet6
 seccomp
@ -31,4 +32,3 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
-notv
--- a/Show more
+++ b/Show more