Merge pull request #2201 from SkewedZeppelin/u2f-ap

Add nou2f to all profiles
2026-05-15 14:16:14 -06:00 · 2018-10-17 08:00:00 -05:00 · 2018-10-17 08:00:00 -05:00 · 92bff8a23c
commit 92bff8a23c
parent 427468be27 284e0750e5
323 changed files with 323 additions and 3 deletions
--- a/etc/0ad.profile
+++ b/etc/0ad.profile
@ -32,6 +32,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/2048-qt.profile
+++ b/etc/2048-qt.profile
@ -30,6 +30,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/7z.profile
+++ b/etc/7z.profile
@ -16,6 +16,7 @@ nodbus
 nodvd
 nosound
 notv
+nou2f
 novideo
 shell none
 tracelog
--- a/etc/Cryptocat.profile
+++ b/etc/Cryptocat.profile
@ -21,6 +21,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 protocol unix,inet,inet6,netlink
 seccomp
 shell none
--- a/etc/Fritzing.profile
+++ b/etc/Fritzing.profile
@ -27,6 +27,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/JDownloader.profile
+++ b/etc/JDownloader.profile
@ -38,6 +38,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/XMind.profile
+++ b/etc/XMind.profile
@ -25,6 +25,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 protocol unix,inet,inet6
 seccomp
 shell none
--- a/etc/Xephyr.profile
+++ b/etc/Xephyr.profile
@ -29,6 +29,7 @@ nonewprivs
 # noroot
 nosound
 notv
+nou2f
 protocol unix
 seccomp
 shell none
--- a/etc/Xvfb.profile
+++ b/etc/Xvfb.profile
@ -31,6 +31,7 @@ nonewprivs
 #noroot
 nosound
 notv
+nou2f
 protocol unix
 seccomp
 shell none
--- a/etc/akonadi_control.profile
+++ b/etc/akonadi_control.profile
@ -42,6 +42,7 @@ nogroups
 noroot
 nosound
 notv
+nou2f
 novideo
 # protocol unix,inet,inet6
 # seccomp.drop @cpu-emulation,@debug,@obsolete,@privileged,@resources,add_key,fanotify_init,io_cancel,io_destroy,kcmp,keyctl,name_to_handle_at,ni_syscall,open_by_handle_at,personality,process_vm_readv,ptrace,remap_file_pages,request_key,syslog,umount,userfaultfd,vmsplice
--- a/etc/akregator.profile
+++ b/etc/akregator.profile
@ -31,6 +31,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 novideo
 protocol unix,inet,inet6,netlink
 # chroot syscalls are needed for setting up the built-in sandbox
--- a/etc/amarok.profile
+++ b/etc/amarok.profile
@ -23,6 +23,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 # seccomp
--- a/etc/amule.profile
+++ b/etc/amule.profile
@ -29,6 +29,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/anydesk.profile
+++ b/etc/anydesk.profile
@ -24,6 +24,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 protocol unix,inet,inet6
 seccomp
 shell none
--- a/etc/apktool.profile
+++ b/etc/apktool.profile
@ -24,6 +24,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/arch-audit.profile
+++ b/etc/arch-audit.profile
@ -27,6 +27,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/ardour5.profile
+++ b/etc/ardour5.profile
@ -28,6 +28,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 protocol unix
 seccomp
 shell none
--- a/etc/aria2c.profile
+++ b/etc/aria2c.profile
@ -26,6 +26,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/ark.profile
+++ b/etc/ark.profile
@ -27,6 +27,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/arm.profile
+++ b/etc/arm.profile
@ -34,6 +34,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/asunder.profile
+++ b/etc/asunder.profile
@ -28,6 +28,7 @@ nodbus
 # nogroups
 nonewprivs
 noroot
+nou2f
 protocol unix,inet,inet6
 seccomp
 shell none
--- a/etc/atom.profile
+++ b/etc/atom.profile
@ -23,6 +23,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6,netlink
 seccomp
--- a/etc/atool.profile
+++ b/etc/atool.profile
@ -31,6 +31,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/atril.profile
+++ b/etc/atril.profile
@ -32,6 +32,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/audacious.profile
+++ b/etc/audacious.profile
@ -27,6 +27,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/audacity.profile
+++ b/etc/audacity.profile
@ -29,6 +29,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/authenticator.profile
+++ b/etc/authenticator.profile
@ -30,8 +30,8 @@ nonewprivs
 noroot
 nosound
 notv
-# novideo
 nou2f
+# novideo
 protocol unix
 seccomp
 shell none
--- a/etc/aweather.profile
+++ b/etc/aweather.profile
@ -27,6 +27,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/baloo_file.profile
+++ b/etc/baloo_file.profile
@ -28,6 +28,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 # blacklisting of ioprio_set system calls breaks baloo_file
--- a/etc/baobab.profile
+++ b/etc/baobab.profile
@ -22,6 +22,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/bibletime.profile
+++ b/etc/bibletime.profile
@ -31,6 +31,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6,netlink
 seccomp
--- a/etc/bitcoin-qt.profile
+++ b/etc/bitcoin-qt.profile
@ -32,6 +32,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/bitlbee.profile
+++ b/etc/bitlbee.profile
@ -23,6 +23,7 @@ nodvd
 nonewprivs
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/bleachbit.profile
+++ b/etc/bleachbit.profile
@ -28,6 +28,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/blender.profile
+++ b/etc/blender.profile
@ -32,6 +32,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 protocol unix,inet,inet6,netlink
 seccomp
 shell none
--- a/etc/bless.profile
+++ b/etc/bless.profile
@ -26,6 +26,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/bluefish.profile
+++ b/etc/bluefish.profile
@ -24,6 +24,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/brackets.profile
+++ b/etc/brackets.profile
@ -21,6 +21,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6,netlink
 seccomp.drop @clock,@cpu-emulation,@debug,@module,@obsolete,@reboot,@resources,@swap,acct,add_key,bpf,fanotify_init,io_cancel,io_destroy,io_getevents,io_setup,io_submit,iopl,ioprio_set,kcmp,keyctl,mount,name_to_handle_at,nfsservctl,ni_syscall,open_by_handle_at,pciconfig_iobase,pciconfig_read,pciconfig_write,personality,pivot_root,process_vm_readv,ptrace,remap_file_pages,request_key,s390_mmio_read,s390_mmio_write,setdomainname,sethostname,syslog,umount,umount2,userfaultfd,vhangup,vmsplic
--- a/etc/bsdtar.profile
+++ b/etc/bsdtar.profile
@ -25,6 +25,7 @@ nonewprivs
 # noroot
 nosound
 notv
+nou2f
 novideo
 nonewprivs
 protocol unix
--- a/etc/calibre.profile
+++ b/etc/calibre.profile
@ -27,6 +27,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/calligra.profile
+++ b/etc/calligra.profile
@ -21,6 +21,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/checkbashisms.profile
+++ b/etc/checkbashisms.profile
@ -36,6 +36,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/cherrytree.profile
+++ b/etc/cherrytree.profile
@ -31,6 +31,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6,netlink
 seccomp
--- a/etc/chromium-common.profile
+++ b/etc/chromium-common.profile
@ -27,6 +27,7 @@ nodbus
 nodvd
 nogroups
 notv
+nou2f
 shell none

 disable-mnt
--- a/etc/cin.profile
+++ b/etc/cin.profile
@ -21,6 +21,7 @@ nodvd
 #nogroups
 nonewprivs
 notv
+nou2f
 noroot
 protocol unix

--- a/etc/clamav.profile
+++ b/etc/clamav.profile
@ -18,6 +18,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/clamtk.profile
+++ b/etc/clamtk.profile
@ -16,6 +16,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/clementine.profile
+++ b/etc/clementine.profile
@ -23,6 +23,7 @@ caps.drop all
 nonewprivs
 noroot
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 # blacklisting of ioprio_set system calls breaks clementine
--- a/etc/clion.profile
+++ b/etc/clion.profile
@ -23,6 +23,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/clipit.profile
+++ b/etc/clipit.profile
@ -25,6 +25,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/code.profile
+++ b/etc/code.profile
@ -21,6 +21,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6,netlink
 seccomp
--- a/etc/conky.profile
+++ b/etc/conky.profile
@ -25,6 +25,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/corebird.profile
+++ b/etc/corebird.profile
@ -24,6 +24,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/cower.profile
+++ b/etc/cower.profile
@ -33,6 +33,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/cpio.profile
+++ b/etc/cpio.profile
@ -24,6 +24,7 @@ nodvd
 nonewprivs
 nosound
 notv
+nou2f
 novideo
 seccomp
 shell none
--- a/etc/curl.profile
+++ b/etc/curl.profile
@ -24,6 +24,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/darktable.profile
+++ b/etc/darktable.profile
@ -25,6 +25,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/deadbeef.profile
+++ b/etc/deadbeef.profile
@ -23,6 +23,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/deluge.profile
+++ b/etc/deluge.profile
@ -34,6 +34,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/dex2jar.profile
+++ b/etc/dex2jar.profile
@ -31,6 +31,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/dia.profile
+++ b/etc/dia.profile
@ -26,6 +26,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/dig.profile
+++ b/etc/dig.profile
@ -28,6 +28,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/dillo.profile
+++ b/etc/dillo.profile
@ -28,6 +28,7 @@ nodvd
 nonewprivs
 noroot
 notv
+nou2f
 protocol unix,inet,inet6
 seccomp
 tracelog
--- a/etc/dino.profile
+++ b/etc/dino.profile
@ -27,6 +27,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/discord-common.profile
+++ b/etc/discord-common.profile
@ -20,6 +20,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 novideo
 protocol unix,inet,inet6,netlink
 seccomp
--- a/etc/display.profile
+++ b/etc/display.profile
@ -31,6 +31,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 protocol unix
 seccomp
 shell none
--- a/etc/dnscrypt-proxy.profile
+++ b/etc/dnscrypt-proxy.profile
@ -24,6 +24,7 @@ nodvd
 nonewprivs
 nosound
 notv
+nou2f
 novideo
 seccomp.drop mount,umount2,ptrace,kexec_load,kexec_file_load,open_by_handle_at,init_module,finit_module,delete_module,iopl,ioperm,swapon,swapoff,syslog,process_vm_readv,process_vm_writev,sysfs,_sysctl,adjtimex,clock_adjtime,lookup_dcookie,perf_event_open,fanotify_init,kcmp,add_key,request_key,keyctl,uselib,acct,modify_ldt,pivot_root,io_setup,io_destroy,io_getevents,io_submit,io_cancel,remap_file_pages,mbind,get_mempolicy,set_mempolicy,migrate_pages,move_pages,vmsplice,perf_event_open

--- a/etc/dnsmasq.profile
+++ b/etc/dnsmasq.profile
@ -24,6 +24,7 @@ nodvd
 nonewprivs
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6,netlink
 seccomp
--- a/etc/dooble.profile
+++ b/etc/dooble.profile
@ -26,6 +26,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 novideo
 protocol unix,inet,inet6,netlink
 seccomp
--- a/etc/dosbox.profile
+++ b/etc/dosbox.profile
@ -25,6 +25,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/dragon.profile
+++ b/etc/dragon.profile
@ -25,6 +25,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/dropbox.profile
+++ b/etc/dropbox.profile
@ -34,6 +34,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/electrum.profile
+++ b/etc/electrum.profile
@ -37,6 +37,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/elinks.profile
+++ b/etc/elinks.profile
@ -26,6 +26,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/enchant.profile
+++ b/etc/enchant.profile
@ -25,6 +25,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/engrampa.profile
+++ b/etc/engrampa.profile
@ -25,6 +25,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/enpass.profile
+++ b/etc/enpass.profile
@ -26,6 +26,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/eog.profile
+++ b/etc/eog.profile
@ -30,6 +30,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/eom.profile
+++ b/etc/eom.profile
@ -30,6 +30,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/etr.profile
+++ b/etc/etr.profile
@ -24,6 +24,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 protocol unix,netlink
 seccomp
 shell none
--- a/etc/evince.profile
+++ b/etc/evince.profile
@ -30,6 +30,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/evolution.profile
+++ b/etc/evolution.profile
@ -31,6 +31,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/exiftool.profile
+++ b/etc/exiftool.profile
@ -29,6 +29,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/falkon.profile
+++ b/etc/falkon.profile
@ -28,6 +28,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 protocol unix,inet,inet6,netlink
 # blacklisting of chroot system calls breaks falkon
 seccomp.drop @clock,@cpu-emulation,@debug,@module,@obsolete,@raw-io,@reboot,@resources,@swap,acct,add_key,bpf,fanotify_init,io_cancel,io_destroy,io_getevents,io_setup,io_submit,ioprio_set,kcmp,keyctl,mount,name_to_handle_at,nfsservctl,ni_syscall,open_by_handle_at,personality,pivot_root,process_vm_readv,ptrace,remap_file_pages,request_key,setdomainname,sethostname,syslog,umount,umount2,userfaultfd,vhangup,vmsplice
--- a/etc/fbreader.profile
+++ b/etc/fbreader.profile
@ -25,6 +25,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/feh.profile
+++ b/etc/feh.profile
@ -22,6 +22,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/fetchmail.profile
+++ b/etc/fetchmail.profile
@ -24,6 +24,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/ffmpeg.profile
+++ b/etc/ffmpeg.profile
@ -22,6 +22,7 @@ nodbus
 nodvd
 nosound
 notv
+nou2f
 novideo
 nonewprivs
 noroot
--- a/etc/file-roller.profile
+++ b/etc/file-roller.profile
@ -25,6 +25,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/file.profile
+++ b/etc/file.profile
@ -23,6 +23,7 @@ nogroups
 nonewprivs
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/filezilla.profile
+++ b/etc/filezilla.profile
@ -28,6 +28,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/firefox-common.profile
+++ b/etc/firefox-common.profile
@ -35,6 +35,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 protocol unix,inet,inet6,netlink
 seccomp.drop @clock,@cpu-emulation,@debug,@module,@obsolete,@raw-io,@reboot,@resources,@swap,acct,add_key,bpf,fanotify_init,io_cancel,io_destroy,io_getevents,io_setup,io_submit,ioprio_set,kcmp,keyctl,mount,name_to_handle_at,nfsservctl,ni_syscall,open_by_handle_at,personality,pivot_root,process_vm_readv,ptrace,remap_file_pages,request_key,setdomainname,sethostname,syslog,umount,umount2,userfaultfd,vhangup,vmsplice
 shell none
--- a/etc/flameshot.profile
+++ b/etc/flameshot.profile
@ -26,6 +26,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/flowblade.profile
+++ b/etc/flowblade.profile
@ -28,6 +28,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 protocol unix,inet,inet6,netlink
 seccomp
 shell none
--- a/etc/fontforge.profile
+++ b/etc/fontforge.profile
@ -30,6 +30,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/franz.profile
+++ b/etc/franz.profile
@ -30,6 +30,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 protocol unix,inet,inet6,netlink
 seccomp
 shell none
--- a/etc/freecad.profile
+++ b/etc/freecad.profile
@ -26,6 +26,7 @@ nonewprivs
 noroot
 nosound
 notv
+nou2f
 novideo
 protocol unix
 seccomp
--- a/etc/freshclam.profile
+++ b/etc/freshclam.profile
@ -16,6 +16,7 @@ nogroups
 nonewprivs
 nosound
 notv
+nou2f
 novideo
 protocol unix,inet,inet6
 seccomp
--- a/etc/frozen-bubble.profile
+++ b/etc/frozen-bubble.profile
@ -27,6 +27,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 protocol unix,netlink
 seccomp
 shell none
--- a/etc/gajim.profile
+++ b/etc/gajim.profile
@ -38,6 +38,7 @@ nogroups
 nonewprivs
 noroot
 notv
+nou2f
 protocol unix,inet,inet6
 seccomp

--- a/Show more
+++ b/Show more