Hello, I've been looking into the Firefox and Chromium based browser profiles and noticed that most of the security features firejail provides are missing in the Chromium / Opera / Chrome profiles. Only netfilter is enabled. I know that Chromium based browsers have a built-in sandbox, but according to this thread some features are missing in order to protect, for instance, the broker process. According to netblue30 it is necessary to disable some of the features in firejail in order to allow the built-in sandbox in Chromium based browsers to work properly. However some of the people on this thread were able to run Chromium with most of the caps dropped and claimed that it would provide additional safety. What about the other features like: nonewprivs noroot protocol unix,inet,inet6,netlink tracelog I tried running Chromium with everything except seccomp and tracelog and it seemed to work. I would like to use as many of the firejail security features as possible with Chromium etc. without compromising its built-in sandbox features. Any ideas?