diff --git a/apparmor.d/profiles-a-f/dig b/apparmor.d/profiles-a-f/dig
index a9e9b2874..bf0b42b6f 100644
--- a/apparmor.d/profiles-a-f/dig
+++ b/apparmor.d/profiles-a-f/dig
@@ -24,9 +24,13 @@ profile dig @{exec_path} {
 
   @{exec_path} mr,
 
-  owner @{PROC}/@{pid}/task/@{tid}/comm rw,
-
   owner @{HOME}/.digrc r,
+  owner @{HOME}/batch_mode.dig  r,
+  owner @{HOME}/tsig.key        r,
+  
+  /tmp/batch_mode.dig       r,
+  
+  owner @{PROC}/@{pids}/task/@{tid}/comm rw,
 
   include if exists <local/dig>
 }
diff --git a/apparmor.d/profiles-g-l/host b/apparmor.d/profiles-g-l/host
new file mode 100644
index 000000000..a229b4056
--- /dev/null
+++ b/apparmor.d/profiles-g-l/host
@@ -0,0 +1,24 @@
+# apparmor.d - Full set of apparmor profiles
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = /{,usr/}bin/host
+profile host @{exec_path} {
+  include <abstractions/base>
+  include <abstractions/openssl>
+  include <abstractions/nameservice-strict>
+
+  network inet dgram,
+  network inet6 dgram,
+  network inet stream,
+  network inet6 stream,
+
+  @{exec_path} r,
+
+  owner @{PROC}/@{pids}/task/@{tid}/comm rw,
+
+  include if exists <local/host>
+}
diff --git a/apparmor.d/profiles-m-r/nslookup b/apparmor.d/profiles-m-r/nslookup
new file mode 100644
index 000000000..71aa765fa
--- /dev/null
+++ b/apparmor.d/profiles-m-r/nslookup
@@ -0,0 +1,24 @@
+# apparmor.d - Full set of apparmor profiles
+# SPDX-License-Identifier: GPL-2.0-only
+
+abi <abi/3.0>,
+
+include <tunables/global>
+
+@{exec_path} = /{,usr/}bin/nslookup
+profile nslookup @{exec_path} {
+  include <abstractions/base>
+  include <abstractions/openssl>
+  include <abstractions/nameservice-strict>
+
+  network inet dgram,
+  network inet6 dgram,
+  network inet stream,
+  network inet6 stream,
+
+  @{exec_path} r,
+
+  owner @{PROC}/@{pids}/task/@{tid}/comm rw,
+
+  include if exists <local/nslookup>
+}