Book Image

Moodle Security

Book Image

Moodle Security

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
Moodle Security
Feb, 2011 | 204 pages
No titles found
Table of Contents (17 chapters)
Moodle Security
Moodle Security
Credits
Credits
About the Author
About the Author
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Delving into the World of Security
Delving into the World of Security
Moodle and security
The secure installation of Moodle
Quickly securing Moodle
Summary
2
Securing Your Server Linux
Securing Your Server Linux
Securing your Linux—the basics
Apache configuration
MySQL configuration
PHP configuration
File security permissions
Adequate location for a Moodle installation
How to secure Moodle files
Summary
3
Securing Your Server—Windows
Securing Your Server—Windows
Securing Windows—the basics
File security permissions
Installing and securing PHP under Internet Information Server
Securing MySQL
Summary
4
Authentication
Authentication
Basics of authentication
Common authentication attacks
Authentication types in Moodle
Summary
5
Roles and Permissions
Roles and Permissions
Roles and capabilities
Standard Moodle roles
Customizing roles
Best practices
Summary
6
Protection Against Bots
Protection Against Bots
Internet bots
Protecting Moodle from unwanted search bots
Protection against spam bots
Protection against brute force attacks
Summary
7
Securing User Files
Securing User Files
Uploading files into Moodle
Dangers and pitfalls
Anti-virus and Moodle
Summary
8
Securing Moodle Data
Securing Moodle Data
User information protection
Course information protection
Summary
9
Monitoring User Activity
Monitoring User Activity
Activity monitoring using Moodle tools
Activity monitoring using OS native tools
Summary
10
Backup
Backup
Importance of backup
Backup tools in Moodle
Site backup
Disaster recovery scenario
Summary
Authentication Plugins
Authentication Plugins
Plugins less common in production servers
Summary

How to secure Moodle files

Securing Moodle files means to permit only the needed users and groups to access the files in both the Moodle and the moodledata folder. We will approach this task by using standard DAC methods, and later mention alternatives available with ACL.

DAC

In CentOS, the user under which the Apache process is executed is called Apache. That user is a member of the group apache. Therefore, we need to give read-only access to all of the files in the Moodle folder and full read/write access in moodledata. Assuming that we use first option for deploying files, here are the set of commands to set adequate permissions for moodledata: 

/bin/chown -R root:apache /var/www/moodledata/
/bin/chmod -R ug=rwX,o= /var/www/moodledata/

The first line sets the owner of the folder (superuser root) and permitted user group (apache). We do this because, as explained earlier, the owner has full rights over anything related to the particular file system object. In case a malicious user manages...

Previous Section
End of Section 8
Next Section