Stronghold of Security
| Stronghold of Security | ||||
|---|---|---|---|---|
 | ||||
| Released | 4 July 2006 (Update) | |||
| Members | No | |||
| Floors | 4 | |||
| Location | Misthalin | |||
| League region |  Misthalin✓ | |||
| Inhabitants | Goblin, Undead, Spider, various animals | |||
| Music | Dogs of War, Food for Thought, Malady, Dance of Death | |||
| Map | ||||
 | ||||
| Advanced data | ||||
| Type | dungeon | |||
| Location on World Map | ||||
| Edgeville Dungeon | ||||
| ↑ | ||||
| Falador | ← | Stronghold of Security | → | Varrock |
| ↓ | ||||
| Draynor Manor | ||||
The Stronghold of Security is a dungeon found in Barbarian Village, just west of Varrock. The dungeon includes four different levels filled with monsters from levels 5 to 159. The dungeon was created to enhance the security of players by filling out security questions in their account management and answering questions that relate to account security. A cannon can be placed in the stronghold. Count Check, in the Lumbridge Graveyard, can teleport players to the entrance of the Stronghold of Security, one time.
Be aware that monsters in the Catacomb of Famine and below are aggressive unlike in the main RuneScape game. Players with lower combat levels should proceed with caution.
Levels
There are four levels, which become progressively harder than the previous floor. At the end of every level, a reward room provides a one-time reward of coins and unique emotes. It is possible for an unarmed level 3 to complete the Stronghold, but decent food is recommended for the more challenging floors.
Note: Before being allowed to claim rewards, a player must have a RuneScape Authenticator on their account via the account management page.
Vault of War (level 1)
The first level is occupied by level 1 rats, level 5/11/13/16/25 goblins, level 11 and 14 wolves, and level 12 and 27 minotaurs, which drop the right skull half for the skull sceptre. The level contains ranging safespots making it popular for new players to gain combat experience in ranged or magic. The last room contains the Gift of Peace, which rewards the player with 2,000 coins and the "Flap" emote.
The portal to the end of this floor can be used at a combat level of 26 or above, even if the reward hasn't been claimed before.
Catacomb of Famine (level 2)
The second level is occupied by level 26 giant rats, level 30/44/53 zombies, and level 28/35/41 flesh crawlers, which drop the bottom of sceptre for the skull sceptre. Killing flesh crawlers is a popular money making method for low levels due to frequent valuable herb drops. The last room contains the Grain of Plenty, which rewards the player with 3,000 coins and the "Slap Head" emote.
The portal to the end of this floor can be used at a combat level of 51 or above, even if the reward hasn't been claimed before.
Pit of Pestilence (level 3)
The third level is occupied by level 24 spiders, level 50 giant spiders, level 37 and 59 scorpions, and level 49/64/68 catablepon, which drop the top of sceptre for the skull sceptre. The giant spiders are very popular to train as they are aggressive towards any level and do little damage. The last room contains the Box of Health, which rewards the player with 5,000 coins and the "Idea" emote. The chest also provides a full stat restore when opened.
The portal to the end of this floor can be used at a combat level of 76 or above, even if the reward hasn't been claimed before.
Sepulchre of Death (level 4)
The fourth and final level is occupied by level 159 shades, a single level 159 zombie, level 60/68/85 skeletons, level 76 and 77 ghosts, and level 75/82/86 ankou, which drop the left skull half for the skull sceptre. The final room contains the Cradle of Life, which rewards the player with the "Stamp" emote and a choice of either the fancy, fighting or fancier boots depending on the player's account security level.
Gallery
-
The Vault of War. -
The Catacomb of Famine. -
The Pit of Pestilence. -
The Sepulchre of Death. -
The Gift of Peace. -
The Grain of Plenty. -
The Box of Health. -
The Cradle of Life.
Rewards
Reward rooms
For completing the Stronghold of Security, the player is provided a one-time reward of 10,000 coins as well as four unique Emotes, and the player's choice of either a pair of fighting boots or a pair of fancy boots if you have two-factor authentication enabled, and additionally a pair of fancier boots if the player's account is a Jagex Account. The Cradle can be interacted with again to receive additional pairs of boots.
Completing each level of the Stronghold of Security allows the player to use the portals found at the beginning of each level. The portals teleport the individual directly to the reward room of the respective floor. Full completion of the stronghold also makes it possible to skip the question to pass the doors. Each level also has a music track the player can unlock:
- Dogs of War (Vault of War)
- Food for Thought (Catacomb of Famine)
- Malady (Pit of Pestilence)
- Dance of Death (Sepulchre of Death)
Skull sceptre
Another possible reward from the Stronghold of Security is the Skull sceptre, which teleports the player to the entrance of the stronghold in Barbarian Village. In order to craft the skull sceptre, players must first obtain four untradeable pieces dropped within the stronghold.
- Right skull half dropped by minotaurs (Vault of War)
- Bottom of sceptre dropped by Flesh Crawlers (Catacomb of Famine)
- Top of sceptre dropped by catablepon (Pit of Pestilence)
- Left skull half dropped by ankou (Sepulchre of Death)
The boots obtained from the Cradle of Life and the complete sceptre can be shown to Solztun, found in the reward room on the last level of the stronghold, for him to imbue the sceptre. Once imbued, the sceptre will not break when the charges are consumed and can be recharged using the pieces required to create the sceptre, providing three charges each. The sceptre normally can hold 10 charges but can be upgraded to hold 14, 18, 22, and 26 after completing the easy, medium, hard, and elite Varrock achievement diaries, respectively.
Warning: should players disable the Authenticator, the skull sceptre will revert to its regular state.
Doors
The doors are named and styled to match the current floor the player is on. Between each set of doors is an empty space within which no monsters can harm a player. On entering the second door in a pair of doors, the player will be prompted with a question related to account security. There are also portals leading to the reward room at the beginning of the floor, but can only be used once the reward on that floor has been claimed or if a player's Combat level is high enough.
| Question | Answer | Response |
|---|---|---|
| To pass you must answer me this: What do you do if someone asks you for your password or bank PIN to make you a member for free? | Give them the information they asked for. | Wrong! Membership requires a subscription paid or a bond to be redeemed - they are trying to trick you. Never give your account details to anyone. Press the 'Report Abuse' button and fill in the offending player's name and the correct category. |
| Don't tell them anything and ignore them. | Quite good. But we should try to stop scammers. So please report them using the 'Report Abuse' button. | |
| Don't tell them anything and click the 'Report Abuse' button. | Correct! Press the 'Report Abuse' Button and fill in the offending player's name and correct category. | |
| To pass you must answer me this: You have been offered a free giveaway or double XP invitation via in-game chat or email. What should you do? | Report the incident and do not click any links. | Correct! This is an attempt to obtain your account details. If it happened in the game, report it via the Report Abuse option. |
| Respond quickly so as not to miss the offer. | Wrong! Jagex will NEVER make offers like this - it is an attempt to obtain your account details. If it happnes in the game, report via the Report Abuse option. | |
| To pass you must answer me this: You have been offered a free giveaway or double XP invitation via social media or a livestream. What should you do? | Respond quickly so as not to miss the offer. | Wrong! Jagex will NEVER make offers like this - it is an attempt to obtain your account details. Please report the incident using whatever reporting methods offered by the site you are on. |
| Report the incident and do not click any links. | Correct! This is an attempt to obtain your account details and should be reported to the relevant organisations via their own reporting systems. | |
| To pass you must answer me this: Is it safe to get someone to level your account? | Yes, so long as you change your password when they have finished. | Wrong! If you allow someone to use your account they may steal it. Alternatively they may use macros/bots to increase your level, and thus get the account banned. |
| Yes, so long as they don't raise it's levels by too much. | ||
| No, you should never allow anyone to use your account. | Correct! Allowing someone else to use your account means they may steal it, or may get it banned by cheating on it. | |
| To pass you must answer me this: Hey adventurer! You've been randomly selected for a prize of 1 year of free membership! I'm just going to need some of your account details so I can put it on your account! | Wowee! Let me just write those down for you. | Incorrect! Do not trust anybody claiming you have won a prize and asking for your account details. |
| No way! I'm reporting you to Jagex! | Correct! Make sure to report anybody asking for your account login details. | |
| I'm not sure about this... let me get back to you on it. | Incorrect! Well done for declining to offer but make sure to report players asking for your account details. | |
| To pass you must answer me this: What is the best security step you can take to keep your registerd email secure? | Set up two-factor authentiation with my email provider. | Correct! Enabling two-factor authentication on your email account wil help protect your email from hijackers. |
| Have a complicated password set to my email. | Wrong! Complicated passwords are always a good idea but they are not the very best security step you can take to keep your email secure. | |
| Use an email address just for Old School RuneScape. | Wrong! Even if you don't use your email address elsewhere there is still a risk that somebody could access it. | |
| To pass you must answer me this: What is the best way to secure your account? | A long and complicated password because you have good memory. | Incorrect! While a strong password is recommended, two-factor authentication adds extra levels of security. |
| Two-factor authentication on your account and your registered email. | Correct! Using each of these features will maximise your account security. | |
| To pass you must answer me this: How do I set a bank PIN? | Talk to any banker. | Correct! Simply talking to a banker will give you the option to set a bank PIN. Never use personal details for passwords or bank PINs! |
| Use the account managment section on the website. | Wrong! Your password can be changed from the account management section, but you must talk to a banker to set a bank PIN. Never use personal details for passwords or bank PINs! | |
| To pass you must answer me this: What should I do if I receive an email asking me to verify my identity or account details due to suspicious activity? | Email them back with the information it asks for. | Wrong! Jagex will NEVER email to ask for account details, so don't send any info back. |
| Click the links in the email to visit the website. | Wrong! Jagex will NEVER email to ask for account details, and the links may lead to a fake website. | |
| Delete it - it is fake! | Correct! Jagex will NEVER email you unless you've used the website to change your account. Account details can only be verified through using account recovery systems on the Old School RuneScape website, NOT through responding to emails. | |
| To pass you must answer me this: Who can I give my password to? | My friends. | Wrong! Your password should be kept secret from everyone. You should *never* give it out under any circumstances. |
| My brother or sister. | ||
| Nobody. | Correct! Your password should be kept secret from everyone. You should *never* give it out under any circumstances. | |
| To pass you must answer me this: What do I do if my account is compromised? | Post on social media about it. | Wrong! Social media will often not solve the problem directly. You'd eventually need to go to the Old School RuneScape website to regain access to your account. |
| Secure my device and reset my password. | Correct! Securing your systems with virus and malware scans is important before resetting your account password to ensure your details are not compromised again. Don't forget to secure your email account too! | |
| To pass you must answer me this: What do I do if a moderator asks me for my account details? | Tell them whatever they want to know. | Wrong! Never give your account details to anyone! This includes things like account creation details, contact details and passwords. Never use personal details for passwords or bank PINs! |
| Politely thell them no, and ignore them. | Okay! Don't just tell them the details. But reporting the incident to Jagex would help. Use the Report Abuse button. Never use personal details for passwords or bank PINs! | |
| Politely tell them no, then use the 'Report Abuse' button. | Correct! Report any attempt to gain your account details as it is a very serious breach of Old School RuneScape's rules. Never use personal details for passwords or bank PINs! | |
| To pass you must answer me this: A player trades you some valuable items, provides you with a bond, then asks if you want to share your account so he can help you make progress. How do you respond? | Decline the offer and report that player. | Correct! Never share your login details with another player. |
| Give the player access since they are a higher level. | Incorrect! Never share your login details with another player. | |
| Tell them you'll trade your account info for theirs. | Incorrect! This option still puts your account and items at risk! | |
| To pass you must answer me this: Where is it safe to use my Old School RuneScape password? | On Old School RuneScape and all fansites. | Wrong! Always use a unique password purely for your Old School RuneScape account. |
| Only on the Old School RuneScape website. | Correct! Always make sure you are entering your password only on the Old School RuneScape website as other sites may try to steal it. | |
| On all websites I visit. | Wrong! This is very insecure and will may lead to your account being stolen. | |
| To pass you must answer me this: Whose responsibility is it to keep your account secure? | Me. | Correct! Make sure to use the tools Jagex recommend, such as two-factor authentication options. |
| Jagex. | Incorrect! Jagex can offer tools such as two-factor authentication options, but you muse make sure you use them correctly to keep your info safe! | |
| My internet provider. | Incorrect! Your internet service provider may offer security advice, but use the tips on the Old School RuneScape website to stay secure. | |
| To pass you must answer me this: Psst! Adventurer! I've got a special offer for you, but you're going to have to trust me. If you give me some gold coins, I'll give you back twice whatever you gave me! How does that sound? | No way! You'll just take my gold for your own! Reported! | Correct! If it sounds too good to be true, it probably is! Be wary of these types of scams. |
| I'm not sure... but giving a few coins to test it won't hurt. | Incorrect! Do not trust players asking for gold offering to return a higher amount. | |
| WoW! You're so generous, thank you! Here's all my gold. | ||
| To pass you must answer me this: Is it okay to buy an Old School RuneScape account? | Yes if it is from someone you know. | Wrong! If you buy an account, the person who originally made it may take it back, and you will lose anything you paid for it. |
| Yes if you pay for it with GP. | ||
| No, you should never buy an account. | Correct! Buying accounts is against the rules. Also you could lose the account if the original owner takes it back. | |
| To pass you must answer me this: My friend asks me to for my password so that he can do a difficult quest for me. Do I give it to him? | Yes. He is my best friends and I've already spent ages trying this quest. | Wrong! Don't give your password to anyone otherwise you can lose everything you have worked so hard for. |
| Don't give them my password. | Correct! You can make it alone and the success will taste even better. Don't forget you can ask people for advice too! | |
| Let them do the quest, but in the same room the whole time. | Wrong! Never let anyone use your account for any reason - they might try to keep it by changing the password! You'd be held responsible if they broke the rules on your account too. | |
| To pass you must answer me this: A player tells you to search for a video online, click the link in the description and comment on the forum post to win a cash prize. What do you do? | Do what they ask, using the provided link in the video description. | Incorrect! Don't trust these types of link even if they look similar to the Old School RuneScape website. |
| Report the player for phishing. | Correct! Always be wary of these links and double check you are on the official Old School RuneScape website before entering your login details! | |
| Tell your friends so they can get free gold too. | Incorrect! Don't trust these types of link even if they look similar to the Old School RuneScape website. | |
| To pass you must answer me this: Adventurer, I'll trade items with you for an amazing price, but you've got to come immediately to a particular place on a differnt game world. Hurry up! Come now before you lose out! What do you say? | Okay, I'll take my valuables there now so we can trade. | Incorrect! Do not trust players trying to rush you into going somewhere unfamiliar. It's often an attempt to lure you into taking items somewhere dangerous, where you'll lose them. |
| Nope, you're tricking me into going somewhere dangerous. | Correct! If it sounds too good to be true, it probably is! Be wary of these types of scams. | |
| To pass you must answer me this: Which of these is an important characteristic of a secure password? | It incorporates your real name or birthday. | Incorrect! Using personal details as your password makes it easier to guess! |
| It's never used on other websites or accounts. | Correct! Make sure to use a unique password to keep your account secure. | |
| It's never changed over many months or years. | Incorrect! You should change your password frequently. | |
| To pass you must answer me this: You're watching a stream by someone claiming to be Jagex offering double XP. What do you do? | Click the link! I love double XP! | Incorrect! This is a common phishing method and puts your account at risk! |
| Report the stream. Real Jagex streams have a 'varified' mark. | Correct! This is a common phishing method and puts your account at risk! | |
| Ignore it. | Incorrect! Well done for avoiding the phishing attempt but make sure to report these wherever possible to help other players. | |
| To pass you must answer me this: Will Jagex prevent me from saying my PIN in game? | Yes. | Wrong! Jagex does NOT block your PIN so don't type it! Anyone asking you to say your PIN is trying to trick you. |
| No. | Correct! Jagex will not block your PIN so don't type it! Anyone asking you to say your PIN is trying to trick you. | |
| To pass you must answer me this: A website claims that they can make me a player moderator. What should I do? | Nothing, it's a fake. | Correct! Remember that moderators are hand picked by Jagex and contact is made through the game inbox only. |
| Give them my account info and password. | Wrong! This will almost certainly lead to your account being hijacked. No wabsite can make you a moderator as tehy are hand picked by Jagex. | |
| To pass you must answer me this: Whatt do I do if I think I have a keylogger or virus? | Virus scan my device then change my password. | Correct! Removing the keylogger must be the priority, otherwise anything you type can be given away. Remember to change your password and bank PIN afterwards. |
| Change my password then virus scan my device. | Wrong! If you change your password while you still have the keylogger, it will still be insecure. Remove the keylogger first. Never use personal details for passwords or bank PINs! | |
| Nothing, it will go away on its own. | Wrong! This could mean your account may be accessed by someone else. Remove the keylogger then change your password. Never use personal details for passwords or bank PINs! | |
| To pass you must answer me this: What should you do if another player messages you recommending a website to purchase items and/or gold? | Check out the website, it never huts to look around! | Incorrect! Websites offering these services should not be trusted! |
| Visit the website in a private browser for added security. | ||
| Do no visit the website and report the player who messaged you. | Correct! Buying and selling items and gold is against the rules and results in a permanent ban! | |
| To pass you must answer me this: Can I leave my account logged in while I'm out of the room? | Yes, for up to an hour. | Wrong! you should log out in case you are attacked. Leaving your character logged in can also allow someone to steal your items or your entire account! |
| No. | Correct! This is the safest, both in terms of security and keeping your items! Leaving your character loged in can also allow someone to steal your items or your entire account! | |
| Yes, if I'll only be a minute or two. | Wrong! you should log out in case you are attacked. Leaving your character logged in can also allow someone to steal your items or your entire account! | |
| To pass you must answer me this: What do you do if someone asks you for your password or bank PIN to make you a player moderator? | Don't give them the information and send an 'Abuse report' | Correct! Press the 'Report Abuse' button and fill in the offenfing player's name and the correct category. |
| Don't tell them anything and ignore them. | Quite good. But we should try to stop scammers. So please report them using the 'Report Abuse' button. | |
| Give them the information they asked for. | Wrong! Jagex never ask for your account informaiton - especially to become a player moderator. Press the 'Report Abuse' button and fill in the offending player's name and the correct category. | |
| To pass you must answer me this: What is an example of a good bank PIN? | Your real life bank PIN. | This is a bad idea as if someone happens to find out your bank PIN on Old School RuneScape, they then have your real life bank PIN! Never use personal details for passwords or bank PINs! |
| Your birthday. | Not a good idea. You know how many presents you get for your birthday, so you can imagine how many people know this date. Never use personal details for passwords or bank PINs. | |
| The birthday of a famous person or event. | Well done! Unless you tell someone, they are unlikely to guess who or what you have chosen, and you can always look it up. Never use personal details for passwords or bank PINs! | |
| To pass you must answer me this: What should you do if your real-life friend asks for your password so he can check your stats? | Give them your password since they're a friend in real life. | Incorrect! Don't trust anybody with your account login details! |
| Don't give out your password to anyone. Not even close friends. | Correct! Doing so could result in losing your items and gold and puts your account at risk. | |
| Log in for your friend and let them play. | Incorrect! Never allow anybody access to your account. | |
| To pass you must answer me this: A player starts asking you about very specific details linked to your account, such as when you created your account, your birthday date, internet provider etc. How should you react? | Be friendly and asnwer the questions. | Incorrect! These details can be used within the account recovery system and possibly compromise your account. |
| Don't share your information and report the player. | Correct! These details could've been used within the account recovery system and possibly compromise your account. | |
| Answer questions and ask the player back for their details. | Incorrect! These details can be used within the account recovery system and possibly compromise your account. If you're asking the player back, your're unknowinlgly commiting the same offence. | |
| To pass you must answer me this: How do I remove a hijacker from my account? | Ask on social media. | Wrong! Visiting oldschool.runescape.com and using the account recovery system will allow you to kick hijackers off your account by locking it as stolen. |
| Email Old School RuneScape. | ||
| Use the Account Recovery system. | Correct! Visiting oldschool.runescape.com and using the account recovery system will allow you to kick hijackers off your account by locking it as stolen. | |
| To pass you must answer me this: You are part way through the Stronghold of Security when you have to answer another question. After you answer the question, you should... | Click through the text as fast as possible to get your reward sooner. | Incorrect! You should read the text and follow the advice to keep your account as secure as possible. |
| Read the text, but forget the info moments later. | Incorrect! You should always remember this info so your account is as safe as possible. | |
| Read the text and follow the advice given. | Correct! As tempting as it is to click through all the text and get your reward as soon as possible, it's important to know these security tips. |
Changes
| Date | Changes |
|---|---|
| [[{{#explode:29 September 2016| |0}} {{#explode:29 September 2016| |1}}]] [[{{#explode:29 September 2016| |2}}]] (update) |
The questions in the Stronghold of Security have been updated. |
| [[{{#explode:26 June 2014| |0}} {{#explode:26 June 2014| |1}}]] [[{{#explode:26 June 2014| |2}}]] (update) |
The Stronghold of Security has been updated to check for the new authenticator. |
Trivia
- The four levels of the stronghold are based upon the Four Horsemen of the Apocalypse.
- The Cradle of Life refers to the story of Pandora's box.
- Each of the four rewards represent the opposite of what the room is about.
- The dead adventurer's hat and examine is a reference to the video game The Legend of Zelda: A Link to the Past.
- The level 1 rats found throughout the Stronghold drop bones when killed, unlike identical level 1 rats found elsewhere in Gielinor.
- In the middle of the Sepulchre of Death, near the Cradle of Life, a notice has been put up to thank the players who contributed questions for the 2018 rework of the Stronghold of Security.
- During exploration of the Stronghold of Security various doors will test the player with account security related questions. These doors also have a chance to not prompt such questions. Thus spamming the doors allows a player a chance at skipping the doors prompts entirely. This can be dated back as far as the release of the Stronghold. [1]
| NPCs | |||||||||
|---|---|---|---|---|---|---|---|---|---|
| Monsters |
| ||||||||
| Items |
| ||||||||
| Related | |||||||||
| Inhabitants | |
|---|---|
| Shops | |
| Features | |
