Free Sample
+ Collection

Moodle Security

Darko Miletić

Learn how to install and configure Moodle in the most secure way possible
RRP $26.99
RRP $44.99
Print + eBook

Want this title & more?

$12.99 p/month

Subscribe to PacktLib

Enjoy full and instant access to over 2000 books and videos – you’ll find everything you need to stay ahead of the curve and make sure you can always get the job done.

Book Details

ISBN 139781849512640
Paperback204 pages

About This Book

  • Follow the practical examples to close up any potential security holes, one by one
  • Choose which parts of your site you want to make public and who you are going to allow to access them
  • Protect against web robots that send harmful spam mails and scan your site's information
  • Learn how to monitor site activity and react accordingly

Who This Book Is For

If you are in charge of Moodle – whether you are an administrator or lead teacher – then securing it is one of the most important things that you can do. You need to know the basics of working with Moodle, but no previous experience of system administration is required.

Table of Contents

Chapter 1: Delving into the World of Security
Moodle and security
The secure installation of Moodle
Quickly securing Moodle
Chapter 2: Securing Your Server Linux
Securing your Linux—the basics
Apache configuration
MySQL configuration
PHP configuration
File security permissions
Adequate location for a Moodle installation
How to secure Moodle files
Chapter 3: Securing Your Server—Windows
Securing Windows—the basics
File security permissions
Installing and securing PHP under Internet Information Server
Securing MySQL
Chapter 4: Authentication
Basics of authentication
Common authentication attacks
Authentication types in Moodle
Chapter 5: Roles and Permissions
Roles and capabilities
Standard Moodle roles
Customizing roles
Best practices
Chapter 6: Protection Against Bots
Internet bots
Protecting Moodle from unwanted search bots
Protection against spam bots
Protection against brute force attacks
Chapter 7: Securing User Files
Uploading files into Moodle
Dangers and pitfalls
Anti-virus and Moodle
Chapter 8: Securing Moodle Data
User information protection
Course information protection
Chapter 9: Monitoring User Activity
Activity monitoring using Moodle tools
Activity monitoring using OS native tools
Chapter 10: Backup
Importance of backup
Backup tools in Moodle
Site backup
Disaster recovery scenario

What You Will Learn

  • Use CAPTCHA to make sure that humans are creating new accounts on Moodle – not Spambots
  • Configure PHP and Apache servers to protect your Windows and Linux systems from malicious threats
  • Assign the most appropriate permissions to different files to ensure the right level of protection
  • Create custom roles to control who accesses what
  • Protect your site from external attacks with secure HTTP
  • Organize regular anti-virus scans to ensure no new risks have been introduced to the system
  • Monitor the security of Moodle easily with notifications and security reports
  • Minimize the downtime of Moodle in the case of actual damage

In Detail

Moving your classes and resources online with a Learning Management System such as Moodle opens up a whole world of possibilities for teaching your students. However, it also opens up a number of threats as your students, private information, and resources become vulnerable to cyber attacks. Learn how to safeguard Moodle to keep the bad guys at bay.

Moodle Security will show you how to make sure that only authorized users can access the information on your Moodle site. This may seem simple, but, every day, systems get hacked and information gets lost or misused. Imagine the consequences if that were to happen in your school. The straightforward examples in this book will help you to lock down those access routes one door at a time.

By learning about the different types of potential threat, reading this book will prepare you for the worst. Web robots can harvest your e-mail addresses to send spam e-mails from your account, which could have devastating effects. Moodle comes with a number of set roles and permissions – make sure these are assigned to the right people, and are set to keep out the spam bots, using Moodle's authentication features. Learn how to secure both Windows and Linux servers and to make sure that none of your system files are accessible to the wrong people. Many of the most dangerous web attacks come from inside your system, so once you have all of your security settings in place, you will learn to monitor user activity to make sure that there are no threats from registered users. You will learn to work with the tools that help you to do this and enable you to back up your settings so that even a crashed system can't bother you.


Read More