diff --git a/etc/baobab.profile b/etc/baobab.profile
index 18c862a4d..d87de9d66 100644
--- a/etc/baobab.profile
+++ b/etc/baobab.profile
@@ -29,6 +29,7 @@ novideo
 protocol unix
 seccomp
 shell none
+tracelog
 
 private-bin baobab
 private-dev
diff --git a/etc/default.profile b/etc/default.profile
index 95a6e8095..7731b6e00 100644
--- a/etc/default.profile
+++ b/etc/default.profile
@@ -16,6 +16,11 @@ include disable-passwdmgr.inc
 include disable-programs.inc
 # include disable-xdg.inc
 
+# include whitelist-common.inc
+# include whitelist-usr-share-common.inc
+# include whitelist-runuser-common.inc
+# include whitelist-var-common.inc
+
 # apparmor
 caps.drop all
 # ipc-namespace
@@ -42,8 +47,11 @@ seccomp
 # private-bin program
 # private-cache
 # private-dev
-# private-etc alternatives
+# see /usr/share/doc/firejail/profile.template for more common private-etc paths.
+# private-etc alternatives,fonts,machine-id
 # private-lib
+# private-opt none
 # private-tmp
 
 # memory-deny-write-execute
+# read-only ${HOME}
diff --git a/etc/gitg.profile b/etc/gitg.profile
index 56f8e136f..3c6f9d72f 100644
--- a/etc/gitg.profile
+++ b/etc/gitg.profile
@@ -19,6 +19,14 @@ include disable-interpreters.inc
 include disable-passwdmgr.inc
 include disable-programs.inc
 
+#whitelist ${HOME}/YOUR_GIT_PROJECTS_DIRECTORY
+#whitelist ${HOME}/.config/git
+#whitelist ${HOME}/.gitconfig
+#whitelist ${HOME}/.git-credentials
+#whitelist ${HOME}/.local/share/gitg
+#whitelist ${HOME}/.ssh
+#include whitelist-common.inc
+
 whitelist /usr/share/gitg
 include whitelist-usr-share-common.inc
 include whitelist-var-common.inc