Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Moodle Security
  • Table Of Contents Toc
Moodle Security

Moodle Security

4.3 (6)
Buy this Book
close
close
Moodle Security

Moodle Security

4.3 (6)
Buy this Book

Overview of this book

Table of Contents (17 chapters)
close
close
close
Moodle Security
Icon
Moodle Security
Credits
Icon
Credits
About the Author
Icon
About the Author
About the Reviewers
Icon
About the Reviewers
www.PacktPub.com
Icon
www.PacktPub.com
Preface
Icon
Preface
Lock Free Chapter
1
Delving into the World of Security
chevron up
Icon
Delving into the World of Security
Icon
Moodle and security
Icon
The secure installation of Moodle
Icon
Quickly securing Moodle
Icon
Summary
2
Securing Your Server Linux
Icon
Securing Your Server Linux
Icon
Securing your Linux—the basics
Icon
Apache configuration
Icon
MySQL configuration
Icon
PHP configuration
Icon
File security permissions
Icon
Adequate location for a Moodle installation
Icon
How to secure Moodle files
Icon
Summary
3
Securing Your Server—Windows
Icon
Securing Your Server—Windows
Icon
Securing Windows—the basics
Icon
File security permissions
Icon
Installing and securing PHP under Internet Information Server
Icon
Securing MySQL
Icon
Summary
4
Authentication
Icon
Authentication
Icon
Basics of authentication
Icon
Common authentication attacks
Icon
Authentication types in Moodle
Icon
Summary
5
Roles and Permissions
Icon
Roles and Permissions
Icon
Roles and capabilities
Icon
Standard Moodle roles
Icon
Customizing roles
Icon
Best practices
Icon
Summary
6
Protection Against Bots
Icon
Protection Against Bots
Icon
Internet bots
Icon
Protecting Moodle from unwanted search bots
Icon
Protection against spam bots
Icon
Protection against brute force attacks
Icon
Summary
7
Securing User Files
Icon
Securing User Files
Icon
Uploading files into Moodle
Icon
Dangers and pitfalls
Icon
Anti-virus and Moodle
Icon
Summary
8
Securing Moodle Data
Icon
Securing Moodle Data
Icon
User information protection
Icon
Course information protection
Icon
Summary
9
Monitoring User Activity
Icon
Monitoring User Activity
Icon
Activity monitoring using Moodle tools
Icon
Activity monitoring using OS native tools
Icon
Summary
10
Backup
Icon
Backup
Icon
Importance of backup
Icon
Backup tools in Moodle
Icon
Site backup
Icon
Disaster recovery scenario
Icon
Summary
1
Authentication Plugins
Icon
Authentication Plugins
Icon
Plugins less common in production servers
Icon
Summary

Chapter 1. Delving into the World of Security

Welcome to Moodle Security!

In the early days of the web, Internet was mostly used for academic purposes. Hence, all communications protocols had very little or no focus on security. The situation started changing as more and more public and commercial services started moving online and common users started actually using Internet in their daily routine. With the increase of user base we see the emerge of the malicious groups of users, the so-called hackers that are focused mostly on information theft and illegal usage. Nowadays it is quite common to be attacked by hacker(s). In fact it is so common and frequent that it is reported that only the USA's cyber attacks generate costs up to 10 billion dollars every year. The purpose of this book is to introduce you to web security while focusing on Moodle.

In this chapter we will cover the following topics:

  • Moodle and security

  • Weak points

  • The secure Moodle installation

  • Quickly securing Moodle

Moodle and security

Moodle is an open source CMS (Course Management System)/LMS (Learning Management System)/VLE (Virtual Learning Environment). Its primary purpose is to enable educational institutions and individuals to create and publish learning content in a coherent and pedagogically valuable manner, so that it can be used for successful knowledge transfer towards students.

That sounds harmless enough. Why would anybody want to illegally access an educational platform?

There are various motives of computer criminals. In general, they are people committed to the circumvention of computer security. This primarily concerns unauthorized remote computer break-ins via a communication network such as the Internet. Some of the motives could be:

  • Financial: Stealing user and/or course information and selling it to other third-parties

  • Personal: Personal grudge, infantile display of power, desire to alter assigned grades, and so on

Weak points

Moodle is a web application and as such must be hosted on a computer connected to some kind of network (private or public—Internet / Intranet). This computer must have the following components:

  • Operating System (OS)

  • Web server

  • PHP

  • Database server

  • Moodle

Each of these pieces can be used as a point of attack by a malicious user(s) in order to obtain access to the protected information. Therefore, it is our task to make all of them as secure as possible. The main focus will be directed towards our Moodle and PHP configuration. At the end of the book you can find some recommended literature for additional reading.

Visually different images
CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Moodle Security
End of Section 1
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon