Clarify endpoint rules (#32)

* Allow low ports if there is a reason given Signed-off-by: Christian Ehrhardt <[email protected]> * Any open-to-be-called matters Signed-off-by: Christian Ehrhardt <[email protected]> * ci(spelling/allow/software): add dbus Signed-off-by: Christian Ehrhardt <[email protected]> * Clarify old ports rule Co-authored-by: Dominik Viererbe <[email protected]> * generalize endpoints After team discussion of wanting the statement open, but going into the differences od dbus vs ports vs sockets we generalize that to external endpoints and add symmetry in the reporters section. Signed-off-by: Christian Ehrhardt <[email protected]> --------- Signed-off-by: Christian Ehrhardt <[email protected]> Co-authored-by: Dominik Viererbe <[email protected]>
canonical · Jul 25, 2023 · 7b3f854 · 7b3f854
1 parent ee3325b
commit 7b3f854
Show file tree

Hide file tree

Showing 2 changed files with 8 additions and 2 deletions.
diff --git a/.github/actions/spelling/allow/software.txt b/.github/actions/spelling/allow/software.txt
@@ -5,6 +5,7 @@ autopkgtest
 autopkgtests
 curl
 dbgsym
+dbus
 debconf
 dpkg
 gettext

diff --git a/README.md b/README.md
@@ -274,7 +274,12 @@ TODO-C:   TBD (list services, timers, jobs)
 TODO-C:   Those have the following security features: TBD (add details like
 TODO-C:   reduced permissions, temp environment, restricted users/groups,
 TODO-C:   seccomp, apparmor, ...)
-TODO: - Packages does not open privileged ports (ports < 1024)
+TODO-A: - Packages does not open privileged ports (ports < 1024).
+TODO-B: - Packages open privileged ports (ports < 1024), but they have 
+TODO-B:   a reason to do so (TBD)
+TODO-A: - Package does not expose any external endpoints
+TODO-B: - Package does not expose an external endpoint, it is
+TODO-B:   TBD endpoint + TBD purpose
 TODO: - Packages does not contain extensions to security-sensitive software
 TODO:   (filters, scanners, plugins, UI skins, ...)
 
@@ -775,7 +780,7 @@ TODO: - does not use lib*v8 directly
 TODO: - does not parse data formats (files [images, video, audio,
 TODO:   xml, json, asn.1], network packets, structures, ...) from
 TODO:   an untrusted source.
-TODO: - does not open a port/socket
+TODO: - does not expose any external endpoint (port/socket/... or similar)
 TODO: - does not process arbitrary web content
 TODO: - does not use centralized online accounts
 TODO: - does not integrate arbitrary javascript into the desktop