added notv to most profiles

2026-05-21 06:45:29 -06:00 · 2017-08-11 10:21:18 -04:00 · 2017-08-11 10:21:18 -04:00 · b97ca53e7b
commit b97ca53e7b
parent a42f6028e2
291 changed files with 293 additions and 0 deletions
--- a/etc/0ad.profile
+++ b/etc/0ad.profile
@ -39,3 +39,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/2048-qt.profile
+++ b/etc/2048-qt.profile
@ -30,3 +30,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/7z.profile
+++ b/etc/7z.profile
@ -20,3 +20,4 @@ tracelog
 private-dev

 include /etc/firejail/default.profile
+notv
--- a/etc/Cryptocat.profile
+++ b/etc/Cryptocat.profile
@ -24,3 +24,4 @@ shell none

 private-dev
 private-tmp
+notv
--- a/etc/Mathematica.profile
+++ b/etc/Mathematica.profile
@ -24,3 +24,4 @@ caps.drop all
 nonewprivs
 noroot
 seccomp
+notv
--- a/etc/Thunar.profile
+++ b/etc/Thunar.profile
@ -26,3 +26,4 @@ protocol unix
 seccomp
 shell none
 tracelog
+notv
--- a/etc/Xephyr.profile
+++ b/etc/Xephyr.profile
@ -38,3 +38,4 @@ private
 private-dev
 # private-etc ld.so.conf,ld.so.cache,resolv.conf,host.conf,nsswitch.conf,gai.conf,hosts,hostname
 private-tmp
+notv
--- a/etc/Xvfb.profile
+++ b/etc/Xvfb.profile
@ -39,3 +39,4 @@ private
 private-dev
 private-etc ld.so.conf,ld.so.cache,resolv.conf,host.conf,nsswitch.conf,gai.conf,hosts,hostname
 private-tmp
+notv
--- a/etc/abrowser.profile
+++ b/etc/abrowser.profile
@ -44,3 +44,4 @@ seccomp
 tracelog

 # private-etc passwd,group,hostname,hosts,localtime,nsswitch.conf,resolv.conf,gtk-2.0,pango,fonts,iceweasel,firefox,adobe,mime.types,mailcap,asound.conf,pulse
+notv
--- a/etc/akregator.profile
+++ b/etc/akregator.profile
@ -30,3 +30,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/amarok.profile
+++ b/etc/amarok.profile
@ -24,3 +24,4 @@ shell none
 private-dev
 # private-etc none
 private-tmp
+notv
--- a/etc/android-studio.profile
+++ b/etc/android-studio.profile
@ -32,3 +32,4 @@ private-dev
 # private-tmp

 noexec /tmp
+notv
--- a/etc/apktool.profile
+++ b/etc/apktool.profile
@ -27,3 +27,4 @@ private-dev

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/arduino.profile
+++ b/etc/arduino.profile
@ -30,3 +30,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/ark.profile
+++ b/etc/ark.profile
@ -27,3 +27,4 @@ shell none
 private-dev
 # private-etc
 private-tmp
+notv
--- a/etc/arm.profile
+++ b/etc/arm.profile
@ -38,3 +38,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/atom-beta.profile
+++ b/etc/atom-beta.profile
@ -25,3 +25,4 @@ shell none

 private-dev
 private-tmp
+notv
--- a/etc/atom.profile
+++ b/etc/atom.profile
@ -25,3 +25,4 @@ shell none

 private-dev
 private-tmp
+notv
--- a/etc/atool.profile
+++ b/etc/atool.profile
@ -29,3 +29,4 @@ tracelog
 private-dev
 private-etc none
 private-tmp
+notv
--- a/etc/atril.profile
+++ b/etc/atril.profile
@ -27,3 +27,4 @@ tracelog
 private-bin atril, atril-previewer, atril-thumbnailer
 private-dev
 private-tmp
+notv
--- a/etc/audacious.profile
+++ b/etc/audacious.profile
@ -25,3 +25,4 @@ tracelog

 private-bin audacious
 private-tmp
+notv
--- a/etc/audacity.profile
+++ b/etc/audacity.profile
@ -30,3 +30,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/aweather.profile
+++ b/etc/aweather.profile
@ -31,3 +31,4 @@ tracelog
 private-bin aweather
 private-dev
 private-tmp
+notv
--- a/etc/baloo_file.profile
+++ b/etc/baloo_file.profile
@ -39,3 +39,4 @@ noexec /tmp
 # read-only  ${HOME}
 # read-write ${HOME}/.local/share
 # noexec     ${HOME}/.local/share
+notv
--- a/etc/baobab.profile
+++ b/etc/baobab.profile
@ -29,3 +29,4 @@ private-tmp
 memory-deny-write-execute
 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/bibletime.profile
+++ b/etc/bibletime.profile
@ -38,3 +38,4 @@ tracelog
 private-dev
 private-etc fonts,resolv.conf,sword,sword.conf,passwd
 private-tmp
+notv
--- a/etc/bitlbee.profile
+++ b/etc/bitlbee.profile
@ -29,3 +29,4 @@ private-tmp
 read-write /var/lib/bitlbee

 noexec /tmp
+notv
--- a/etc/bleachbit.profile
+++ b/etc/bleachbit.profile
@ -31,3 +31,4 @@ shell none
 memory-deny-write-execute
 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/blender.profile
+++ b/etc/blender.profile
@ -26,3 +26,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/bless.profile
+++ b/etc/bless.profile
@ -30,3 +30,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/brasero.profile
+++ b/etc/brasero.profile
@ -31,3 +31,4 @@ tracelog
 memory-deny-write-execute
 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/brave.profile
+++ b/etc/brave.profile
@ -34,3 +34,4 @@ netfilter
 # seccomp

 # disable-mnt
+notv
--- a/etc/caja.profile
+++ b/etc/caja.profile
@ -32,3 +32,4 @@ tracelog
 # private-dev
 # private-etc fonts
 # private-tmp
+notv
--- a/etc/calibre.profile
+++ b/etc/calibre.profile
@ -32,3 +32,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/catfish.profile
+++ b/etc/catfish.profile
@ -29,3 +29,4 @@ tracelog
 # private-bin bash,catfish,env,locate,ls,mlocate,python,python2,python2.7,python3,python3.5,python3.5m,python3m
 # private-dev
 # private-tmp
+notv
--- a/etc/cherrytree.profile
+++ b/etc/cherrytree.profile
@ -32,3 +32,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/chromium.profile
+++ b/etc/chromium.profile
@ -35,3 +35,4 @@ private-dev

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/claws-mail.profile
+++ b/etc/claws-mail.profile
@ -26,3 +26,4 @@ shell none

 private-dev
 private-tmp
+notv
--- a/etc/clementine.profile
+++ b/etc/clementine.profile
@ -19,3 +19,4 @@ novideo
 protocol unix,inet,inet6
 # Clementine makes ioprio_set system calls, which are blacklisted by default.
 seccomp.drop mount,umount2,ptrace,kexec_load,kexec_file_load,name_to_handle_at,open_by_handle_at,create_module,init_module,finit_module,delete_module,iopl,ioperm,swapon,swapoff,syslog,process_vm_readv,process_vm_writev,sysfs,_sysctl,adjtimex,clock_adjtime,lookup_dcookie,perf_event_open,fanotify_init,kcmp,add_key,request_key,keyctl,uselib,acct,modify_ldt,pivot_root,io_setup,io_destroy,io_getevents,io_submit,io_cancel,remap_file_pages,mbind,get_mempolicy,set_mempolicy,migrate_pages,move_pages,vmsplice,chroot,tuxcall,reboot,mfsservctl,get_kernel_syms,bpf,clock_settime,personality,process_vm_writev,query_module,settimeofday,stime,umount,userfaultfd,ustat,vm86,vm86old
+notv
--- a/etc/clipit.profile
+++ b/etc/clipit.profile
@ -31,3 +31,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/cmus.profile
+++ b/etc/cmus.profile
@ -22,3 +22,4 @@ shell none

 private-bin cmus
 private-etc group
+notv
--- a/etc/conkeror.profile
+++ b/etc/conkeror.profile
@ -29,3 +29,4 @@ nonewprivs
 noroot
 protocol unix,inet,inet6
 seccomp
+notv
--- a/etc/corebird.profile
+++ b/etc/corebird.profile
@ -16,3 +16,4 @@ netfilter
 noroot
 protocol unix,inet,inet6
 seccomp
+notv
--- a/etc/cpio.profile
+++ b/etc/cpio.profile
@ -25,3 +25,4 @@ shell none
 tracelog

 private-dev
+notv
--- a/etc/curl.profile
+++ b/etc/curl.profile
@ -32,3 +32,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/cvlc.profile
+++ b/etc/cvlc.profile
@ -28,3 +28,4 @@ private-dev
 private-tmp

 memory-deny-write-execute
+notv
--- a/etc/cyberfox.profile
+++ b/etc/cyberfox.profile
@ -68,3 +68,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/darktable.profile
+++ b/etc/darktable.profile
@ -29,3 +29,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/deadbeef.profile
+++ b/etc/deadbeef.profile
@ -28,3 +28,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/default.profile
+++ b/etc/default.profile
@ -21,6 +21,8 @@ nonewprivs
 noroot
 # nosound
 # novideo
+# notv
+# no3d
 protocol unix,inet,inet6
 seccomp
 # shell none
--- a/etc/deluge.profile
+++ b/etc/deluge.profile
@ -31,3 +31,4 @@ shell none
 # private-bin deluge,sh,python,uname
 private-dev
 private-tmp
+notv
--- a/etc/dex2jar.profile
+++ b/etc/dex2jar.profile
@ -28,3 +28,4 @@ private-dev

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/dia.profile
+++ b/etc/dia.profile
@ -30,3 +30,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/digikam.profile
+++ b/etc/digikam.profile
@ -31,3 +31,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/dillo.profile
+++ b/etc/dillo.profile
@ -26,3 +26,4 @@ noroot
 protocol unix,inet,inet6
 seccomp
 tracelog
+notv
--- a/etc/dino.profile
+++ b/etc/dino.profile
@ -37,3 +37,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/display.profile
+++ b/etc/display.profile
@ -26,3 +26,4 @@ private-bin display
 private-dev
 private-etc none
 private-tmp
+notv
--- a/etc/dnscrypt-proxy.profile
+++ b/etc/dnscrypt-proxy.profile
@ -19,3 +19,4 @@ seccomp.drop mount,umount2,ptrace,kexec_load,kexec_file_load,open_by_handle_at,i

 private
 private-dev
+notv
--- a/etc/dnsmasq.profile
+++ b/etc/dnsmasq.profile
@ -24,3 +24,4 @@ seccomp
 disable-mnt
 private
 private-dev
+notv
--- a/etc/dolphin.profile
+++ b/etc/dolphin.profile
@ -31,3 +31,4 @@ shell none
 # private-dev
 # private-etc
 # private-tmp
+notv
--- a/etc/dosbox.profile
+++ b/etc/dosbox.profile
@ -25,3 +25,4 @@ tracelog
 private-bin dosbox
 private-dev
 private-tmp
+notv
--- a/etc/dragon.profile
+++ b/etc/dragon.profile
@ -29,3 +29,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/dropbox.profile
+++ b/etc/dropbox.profile
@ -39,3 +39,4 @@ private-dev
 private-tmp

 noexec /tmp
+notv
--- a/etc/electron.profile
+++ b/etc/electron.profile
@ -17,3 +17,4 @@ nonewprivs
 noroot
 protocol unix,inet,inet6,netlink
 seccomp
+notv
--- a/etc/elinks.profile
+++ b/etc/elinks.profile
@ -31,3 +31,4 @@ tracelog
 private-dev
 # private-etc none
 private-tmp
+notv
--- a/etc/emacs.profile
+++ b/etc/emacs.profile
@ -19,3 +19,4 @@ nonewprivs
 noroot
 protocol unix,inet,inet6
 seccomp
+notv
--- a/etc/empathy.profile
+++ b/etc/empathy.profile
@ -17,3 +17,4 @@ nonewprivs
 noroot
 protocol unix,inet,inet6
 seccomp
+notv
--- a/etc/enchant.profile
+++ b/etc/enchant.profile
@ -27,3 +27,4 @@ tracelog
 # private-dev
 # private-etc fonts
 # private-tmp
+notv
--- a/etc/engrampa.profile
+++ b/etc/engrampa.profile
@ -27,3 +27,4 @@ tracelog
 private-dev
 # private-etc fonts
 # private-tmp
+notv
--- a/etc/eog.profile
+++ b/etc/eog.profile
@ -35,3 +35,4 @@ private-tmp
 memory-deny-write-execute
 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/eom.profile
+++ b/etc/eom.profile
@ -32,3 +32,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/epiphany.profile
+++ b/etc/epiphany.profile
@ -27,3 +27,4 @@ netfilter
 nonewprivs
 protocol unix,inet,inet6
 seccomp
+notv
--- a/etc/etr.profile
+++ b/etc/etr.profile
@ -28,3 +28,4 @@ shell none
 private-dev
 # private-etc none
 private-tmp
+notv
--- a/etc/evince.profile
+++ b/etc/evince.profile
@ -34,3 +34,4 @@ private-etc fonts
 memory-deny-write-execute
 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/evolution.profile
+++ b/etc/evolution.profile
@ -36,3 +36,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/exiftool.profile
+++ b/etc/exiftool.profile
@ -33,3 +33,4 @@ tracelog
 private-dev
 private-etc none
 private-tmp
+notv
--- a/etc/fbreader.profile
+++ b/etc/fbreader.profile
@ -24,3 +24,4 @@ shell none
 private-bin fbreader,FBReader
 private-dev
 private-tmp
+notv
--- a/etc/feh.profile
+++ b/etc/feh.profile
@ -25,3 +25,4 @@ private-bin feh
 private-dev
 private-etc feh
 private-tmp
+notv
--- a/etc/file-roller.profile
+++ b/etc/file-roller.profile
@ -32,3 +32,4 @@ private-dev
 memory-deny-write-execute
 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/file.profile
+++ b/etc/file.profile
@ -28,3 +28,4 @@ x11 none
 private-bin file
 private-dev
 private-etc magic.mgc,magic,localtime
+notv
--- a/etc/filezilla.profile
+++ b/etc/filezilla.profile
@ -24,3 +24,4 @@ shell none
 private-bin filezilla,uname,sh,bash,dash,python,lsb_release,fzputtygen,fzsftp
 private-dev
 private-tmp
+notv
--- a/etc/firefox.profile
+++ b/etc/firefox.profile
@ -68,3 +68,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/flashpeak-slimjet.profile
+++ b/etc/flashpeak-slimjet.profile
@ -34,3 +34,4 @@ nonewprivs
 noroot
 protocol unix,inet,inet6,netlink
 seccomp
+notv
--- a/etc/flowblade.profile
+++ b/etc/flowblade.profile
@ -27,3 +27,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/fontforge.profile
+++ b/etc/fontforge.profile
@ -28,3 +28,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/fossamail.profile
+++ b/etc/fossamail.profile
@ -18,3 +18,4 @@ whitelist ~/.gnupg
 include /etc/firejail/whitelist-common.inc

 include /etc/firejail/firefox.profile
+notv
--- a/etc/franz.profile
+++ b/etc/franz.profile
@ -37,3 +37,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/frozen-bubble.profile
+++ b/etc/frozen-bubble.profile
@ -28,3 +28,4 @@ shell none
 private-dev
 # private-etc none
 private-tmp
+notv
--- a/etc/gajim.profile
+++ b/etc/gajim.profile
@ -42,3 +42,4 @@ private-dev
 # private-tmp
 # Allow the local python 2.7 site packages, in case any plugins are using these
 read-only ${HOME}/.local/lib/python2.7/site-packages/
+notv
--- a/etc/galculator.profile
+++ b/etc/galculator.profile
@ -31,3 +31,4 @@ private-bin galculator
 private-dev
 private-etc fonts
 private-tmp
+notv
--- a/etc/geany.profile
+++ b/etc/geany.profile
@ -25,3 +25,4 @@ shell none

 private-dev
 private-tmp
+notv
--- a/etc/gedit.profile
+++ b/etc/gedit.profile
@ -33,3 +33,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/geeqie.profile
+++ b/etc/geeqie.profile
@ -26,3 +26,4 @@ shell none
 # private-bin geeqie
 private-dev
 # private-etc X11
+notv
--- a/etc/gimp.profile
+++ b/etc/gimp.profile
@ -28,3 +28,4 @@ private-tmp
 # if you are not using external plugins, you can enable noexec statement below
 # noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/git.profile
+++ b/etc/git.profile
@ -32,3 +32,4 @@ seccomp
 shell none

 private-dev
+notv
--- a/etc/gitg.profile
+++ b/etc/gitg.profile
@ -31,3 +31,4 @@ private-tmp
 memory-deny-write-execute
 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/gitter.profile
+++ b/etc/gitter.profile
@ -25,3 +25,4 @@ shell none
 private-bin gitter
 private-dev
 private-tmp
+notv
--- a/etc/gjs.profile
+++ b/etc/gjs.profile
@ -31,3 +31,4 @@ tracelog
 private-dev
 # private-etc fonts
 private-tmp
+notv
--- a/etc/globaltime.profile
+++ b/etc/globaltime.profile
@ -30,3 +30,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/etc/gnome-2048.profile
+++ b/etc/gnome-2048.profile
@ -31,3 +31,4 @@ private-tmp

 noexec ${HOME}
 noexec /tmp
+notv
--- a/Show more
+++ b/Show more