https://starwolves.io/ Wed, 27 May 2026 19:43:25 +0000 MyBB https://starwolves.io/thread-3.html Thu, 24 Nov 2022 17:53:26 +0000 starwolf]]> https://starwolves.io/thread-3.html Security Policy
Security related information regarding Star Wolves product development and self-managed services.

Domain names
The domain names make use of DNSSEC.

Email postmaster
The email postmaster that sends emails to users for verification and recovery options only sends SSL-encrypted emails.

Server security
Server installations are deployed on Linux and have undergone routine security measurements. From intrusion prevention software, to whitelisting only specific static IP addresses with firewalls and by making proper use of Linux users, permissions systems and administrators use password vaults with randomly generated passwords and two factor authentication.
Services run on secure servers inside data-centers with optimal geographic positions. These data-centers are secured and only physically and remotely accessible by trusted people.

Service security
Web services are offered as HTTPS-only.
User and admins ervices that provide login portals have sets of minimum password requirements. Login functionality of our services comes either as rate limited or with captchas to protect against bots. Or both!
Backups are performed every month and are only accessible by persons of high authorization.

1. MyBB (starwolves.io forum)
MyBB is a free open source BulletinBoard project that has existed and matured for many years. It has undergone a lot of security analyses and updates. For this instance the security advises have been heard and many security related settings have been tweaked. The MySQL database has been secured.

2. Gitlab (gitlab.starwolves.io)
Gitlab community edition is an open source end-to-end software development platform with built-in version control, issue tracking, code review, CI/CD, and more. The security advises have been heard and security tweaks have been made to it as well. Gitlab is mature and backed by big business.

3. Matrix (comms.starwolves.io)
Dendrite is a new Matrix homeserver written in Go. It is free open source and currently still in an early development state. Matrix is a very secure messaging system and messages are only stored in encrypted forms inside the databases.

4. Store (store.starwolves.io)
The store is a custom Node.js solution that accepts credit card payments with Stripe. We do not store any sensitive payment or personal information on our servers, instead these are stored on the servers of Stripe. The store has rate limiters installed and user passwords are hashed using Argon2. Input on all POST and GET methods are validated server-side. SQL queries that involve input are escaped. Sensitive endpoints are whitelisted by IP address. The store is exclusively served over a secure https connection. Server-side API keys have been stripped of as much permissions as possible.

Security of high authorization persons
Persons with high levels of access are expected to practice digital hygiene. This is reserved for server maintainers, administrators, DevOps and the like.
Required digital hygiene points:

1. Manage your device(s) accounts with access to high authorization accounts(1) responsibly, professionally and maturely and only entrust it to people that you explicitly entrust with all this data (people whose full identity you know) and people that have to your estimations a low chance of maliciously making use of your device(s).
   
2. Usage of two-factor authentication for all relevant accounts(1). Two factor authentication secrets must be stored inside a password protected ENCRYPTED application (like Android app Aegis) or other secure password vaults with TOTP features.
   
3. Usage of a password vault with randomly generated strings as passwords for the relevant authorized accounts(1).
   
4. Usage of device and disk encryption supplied as features with operating systems for devices that have access to relevant authorized accounts(1). For Windows users, this includes BitLocker + character PIN on boot.
   

For persons with such access: A full identity exchange including verification of legal personal identification documents through trusted services (ie electronicid.eu) are required. 


Footnotes:

1. Accounts that have high levels of authorization to one or more of our servers, services or products. ↩ ↩2 ↩3 ↩4
   

]]> Security Policy
Security related information regarding Star Wolves product development and self-managed services.

Domain names
The domain names make use of DNSSEC.

Email postmaster
The email postmaster that sends emails to users for verification and recovery options only sends SSL-encrypted emails.

Server security
Server installations are deployed on Linux and have undergone routine security measurements. From intrusion prevention software, to whitelisting only specific static IP addresses with firewalls and by making proper use of Linux users, permissions systems and administrators use password vaults with randomly generated passwords and two factor authentication.
Services run on secure servers inside data-centers with optimal geographic positions. These data-centers are secured and only physically and remotely accessible by trusted people.

Service security
Web services are offered as HTTPS-only.
User and admins ervices that provide login portals have sets of minimum password requirements. Login functionality of our services comes either as rate limited or with captchas to protect against bots. Or both!
Backups are performed every month and are only accessible by persons of high authorization.

1. MyBB (starwolves.io forum)
MyBB is a free open source BulletinBoard project that has existed and matured for many years. It has undergone a lot of security analyses and updates. For this instance the security advises have been heard and many security related settings have been tweaked. The MySQL database has been secured.

2. Gitlab (gitlab.starwolves.io)
Gitlab community edition is an open source end-to-end software development platform with built-in version control, issue tracking, code review, CI/CD, and more. The security advises have been heard and security tweaks have been made to it as well. Gitlab is mature and backed by big business.

3. Matrix (comms.starwolves.io)
Dendrite is a new Matrix homeserver written in Go. It is free open source and currently still in an early development state. Matrix is a very secure messaging system and messages are only stored in encrypted forms inside the databases.

4. Store (store.starwolves.io)
The store is a custom Node.js solution that accepts credit card payments with Stripe. We do not store any sensitive payment or personal information on our servers, instead these are stored on the servers of Stripe. The store has rate limiters installed and user passwords are hashed using Argon2. Input on all POST and GET methods are validated server-side. SQL queries that involve input are escaped. Sensitive endpoints are whitelisted by IP address. The store is exclusively served over a secure https connection. Server-side API keys have been stripped of as much permissions as possible.

Security of high authorization persons
Persons with high levels of access are expected to practice digital hygiene. This is reserved for server maintainers, administrators, DevOps and the like.
Required digital hygiene points:

1. Manage your device(s) accounts with access to high authorization accounts(1) responsibly, professionally and maturely and only entrust it to people that you explicitly entrust with all this data (people whose full identity you know) and people that have to your estimations a low chance of maliciously making use of your device(s).
   
2. Usage of two-factor authentication for all relevant accounts(1). Two factor authentication secrets must be stored inside a password protected ENCRYPTED application (like Android app Aegis) or other secure password vaults with TOTP features.
   
3. Usage of a password vault with randomly generated strings as passwords for the relevant authorized accounts(1).
   
4. Usage of device and disk encryption supplied as features with operating systems for devices that have access to relevant authorized accounts(1). For Windows users, this includes BitLocker + character PIN on boot.
   

For persons with such access: A full identity exchange including verification of legal personal identification documents through trusted services (ie electronicid.eu) are required. 


Footnotes:

1. Accounts that have high levels of authorization to one or more of our servers, services or products. ↩ ↩2 ↩3 ↩4
   

]]> https://starwolves.io/thread-2.html Thu, 24 Nov 2022 17:48:20 +0000 starwolf]]> https://starwolves.io/thread-2.html The following rules apply to Star Wolves platforms and services such as the SS14 server and the official Space Frontiers Discord server.


0. Regarding minors. 
(I) NO minors below the age of 16 are allowed to be present or to partake in our server or services unless they are accompanied by parental consent AND by parental supervision.
(II) Orderly and respectful conduct from adults around or towards minors is a standard that you must do your best to uphold at all times.
(III) In and around the SS14 server and the default 16+ Discord channels you must always assume minors are watching and present, which means you must moderate your own behavior accordingly. Do not be overtly rude, vulgar or mean to other users; instead resort to pinging or messaging staff members to resolve issues.
(IV) The SS14 server and the default 16+ Discord channels prioritize light-hearted, playful & mutually courteous and respectful behavior.
1. No NSFW conversations or content.
(I) No extreme vulgar, overly violent, disgusting, brutal or sexually explicit conversations or content.
2. With respect to freedom of speech.
(I) We offer everyone the freedom of speech and freedom to offend inside our designated 18+ Discord channels. However, this freedom is not a given in our Space Station 14 game server or in the default Discord 16+ server channels.
(II) But to a reasonable extend that doesn't result in the degeneracy of our chat. Please, dependent on the severity of the offending speech you may have outed, consider how often and when you would like to repeat it in this server.
(III) We also offer a place to discuss controversial topics, but when you discuss or mention such topics ensure you do so with the right motives. It is easy to provoke a lot of emotions and chaos in the chat by being careless with what you write.
(IV) Jokes about sensitive topics are okay but refer to Rules 2.II and 3 . We will do our best to allow for genuine jokes, but we keep our eyes out on controversial jokes a bit more. Just because sometimes the motivations aren't always to truly try and make people laugh.
3. No bad trolls.
(I) Please ensure that the persona you represent in our server is "real enough". Ie not just some shady impersonal account that constantly attempts to disrupt and only acts in non-contributive and disrupting patterns (no bad trolls basically).
(II) If your account shows similarities with that of a bad troll you always invoke the chance of a potential misjudgment from our moderation team due to the unchangeable nature of the internet.
4. No unnecessary toxicity.
(I) Do not start malevolent flame wars with other toxic members, if people join this community with the sole intention to troll or be non-constructively mean, they should be removed from the group.
(II) Creating flame wars with all kinds of insults and toxic/nasty behaviour towards one another is a bad display for public channels. If you want to fight someone and they hate you too, start the fight in DMs.
5. Do not break the relevant Terms Of Service on the platforms we use.
(I) Corporate and/or public community platforms like Discord have great reach and advantages. We do not want our community banned on those places. For the importance of freedom of speech freely access our self-hosted discourse platforms such as our Matrix server (currently offline).
Staff Rules:
1. Punish users with an escalation method.
(I) Severity of punishments are decided by the severity of the violation and depending on if the violator has previously been warned or punished before for (similar) violations.
(II) The stair-case to punishment escalation involves several timeouts before more severe punishments are made.
(III) If the violator is suspected to violate Rule 3.I the escalation staircase could be bypassed when there is a shortage of time/staff-manpower or if a wave of trolls is active.
2. Punishment code of conduct.
(I) Incorrect punishments deem to be corrected and apologized for.
3. Staff code of conduct.
(I) Staff members are not expected to aggravate members or situations for the sole sake of causing chaos.
Report disruptors and rule breakers by tagging or DMing staff members.]]> The following rules apply to Star Wolves platforms and services such as the SS14 server and the official Space Frontiers Discord server.


0. Regarding minors. 
(I) NO minors below the age of 16 are allowed to be present or to partake in our server or services unless they are accompanied by parental consent AND by parental supervision.
(II) Orderly and respectful conduct from adults around or towards minors is a standard that you must do your best to uphold at all times.
(III) In and around the SS14 server and the default 16+ Discord channels you must always assume minors are watching and present, which means you must moderate your own behavior accordingly. Do not be overtly rude, vulgar or mean to other users; instead resort to pinging or messaging staff members to resolve issues.
(IV) The SS14 server and the default 16+ Discord channels prioritize light-hearted, playful & mutually courteous and respectful behavior.
1. No NSFW conversations or content.
(I) No extreme vulgar, overly violent, disgusting, brutal or sexually explicit conversations or content.
2. With respect to freedom of speech.
(I) We offer everyone the freedom of speech and freedom to offend inside our designated 18+ Discord channels. However, this freedom is not a given in our Space Station 14 game server or in the default Discord 16+ server channels.
(II) But to a reasonable extend that doesn't result in the degeneracy of our chat. Please, dependent on the severity of the offending speech you may have outed, consider how often and when you would like to repeat it in this server.
(III) We also offer a place to discuss controversial topics, but when you discuss or mention such topics ensure you do so with the right motives. It is easy to provoke a lot of emotions and chaos in the chat by being careless with what you write.
(IV) Jokes about sensitive topics are okay but refer to Rules 2.II and 3 . We will do our best to allow for genuine jokes, but we keep our eyes out on controversial jokes a bit more. Just because sometimes the motivations aren't always to truly try and make people laugh.
3. No bad trolls.
(I) Please ensure that the persona you represent in our server is "real enough". Ie not just some shady impersonal account that constantly attempts to disrupt and only acts in non-contributive and disrupting patterns (no bad trolls basically).
(II) If your account shows similarities with that of a bad troll you always invoke the chance of a potential misjudgment from our moderation team due to the unchangeable nature of the internet.
4. No unnecessary toxicity.
(I) Do not start malevolent flame wars with other toxic members, if people join this community with the sole intention to troll or be non-constructively mean, they should be removed from the group.
(II) Creating flame wars with all kinds of insults and toxic/nasty behaviour towards one another is a bad display for public channels. If you want to fight someone and they hate you too, start the fight in DMs.
5. Do not break the relevant Terms Of Service on the platforms we use.
(I) Corporate and/or public community platforms like Discord have great reach and advantages. We do not want our community banned on those places. For the importance of freedom of speech freely access our self-hosted discourse platforms such as our Matrix server (currently offline).
Staff Rules:
1. Punish users with an escalation method.
(I) Severity of punishments are decided by the severity of the violation and depending on if the violator has previously been warned or punished before for (similar) violations.
(II) The stair-case to punishment escalation involves several timeouts before more severe punishments are made.
(III) If the violator is suspected to violate Rule 3.I the escalation staircase could be bypassed when there is a shortage of time/staff-manpower or if a wave of trolls is active.
2. Punishment code of conduct.
(I) Incorrect punishments deem to be corrected and apologized for.
3. Staff code of conduct.
(I) Staff members are not expected to aggravate members or situations for the sole sake of causing chaos.
Report disruptors and rule breakers by tagging or DMing staff members.]]>