Security on Art Stop Monti

Art Stop Monti’s Commitment to Your Privacy and Security

Welcome to Art Stop Monti! We truly value your privacy and prioritize maintaining a secure platform for all our users. In this section, we’ll walk you through the steps we take to protect your data and ensure a safe experience on our site.

Our Basic Rules

First and foremost, let’s talk about some basic rules that are essential to keeping everyone safe. Think of these rules as the foundation of a secure house—without them, everything can come tumbling down. When you participate in our bug bounty program, or even just use our platform, you need to keep these in mind:

  1. Respect User Accounts and Data: Never try to access someone else’s account or data. Imagine how you’d feel if someone tried to snoop around in your personal information—it’s not okay, and we won’t tolerate it.
  2. No Harm to Others: Don’t do anything that could harm other users or their experience on Art Stop Monti. This includes disrupting their access to our services. We’re all here to enjoy and share our love for art, so let’s keep it friendly and safe.
  3. Protect Our Services: Avoid any attacks that could compromise the reliability or integrity of our services. DDoS and spam attacks? Absolutely off-limits. We want our platform to run smoothly for everyone.
  4. Keep Vulnerabilities Private: If you find a vulnerability, don’t share it publicly until we’ve had a chance to fix it. Think of it like finding a crack in the wall of our house—let us know so we can repair it before it gets worse.
  5. Avoid Non-Technical Attacks: This includes things like phishing, social engineering, or physical attacks. It’s like tricking someone into giving you their house keys—not cool and definitely not allowed.

What Doesn’t Qualify for Rewards?

Now, let’s go over some reports that don’t qualify for rewards in our bug bounty program. These are like finding scratches on the surface that don’t actually affect the structure of our house:

  • Issues with software or protocols that we don’t control.
  • Bugs in features that are still in development or beta stages.
  • Information that’s public or doesn’t pose a significant risk.
  • Credentials shared by third parties unrelated to Art Stop Monti.
  • Bugs affecting only outdated browser or plugin versions.
  • Cookies shared across different Art Stop Monti domains.
  • Bugs that have already been reported or are known to us.
  • Automation or brute-forcing intended functionalities.

Known Issues

There are some issues we already know about and consider acceptable risks. Reporting these won’t earn a reward, as it’s like telling us the front door squeaks when we already have it on our to-do list:

  • Username or Email Enumeration: Whether through signup, login, or password reset.
  • Mobile Number Enumeration: Gathering mobile numbers through automated means.
  • Unverified or Disposable Emails: Using these to pretend to be someone else.
  • SSL + HSTS Implementation: We’re almost there but still working on full coverage.
  • Email Authentication Protocols: Not all protocols are uniformly applied due to practical trade-offs.
  • Session Cookie Reuse: Possible before logout or certain account updates.
  • Email Address Changes: Not logging users out of all sessions upon changes.
  • Obsolete Links: These will be corrected over time.
  • Exposed Keys in HTML: Some keys, like those for mapping, are intentionally exposed.
  • Image Upload Vulnerabilities: Issues with images containing scripts or metadata, unless they’re served from our systems.

Our Commitment to You

We stand by our commitment to providing accurate information and maintaining a safe platform. Our team works hard to ensure our content is reliable, and we take pride in the work we do. But, we’re human, and sometimes mistakes happen. When they do, we promise to take reasonable steps to correct them promptly.

We believe in transparency and accountability, and we appreciate your trust in us. If you ever spot something that doesn’t seem right, please let us know. We’re all in this together, and your feedback helps us improve and keep Art Stop Monti a safe, enjoyable place for everyone.

Thank you for being a part of our community and for helping us maintain a secure and vibrant platform. We couldn’t do it without you!

Warm regards,

The Art Stop Monti Team

Feel free to reach out with any questions or concerns at 951-252-9208. We’re here to help and always appreciate your input!