You're reading from Moodle 4 Administration An administrator's guide to configuring, securing, customizing, and extending Moodle

Product type Paperback

Published in Oct 2022

Publisher Packt

ISBN-13 9781801816724

Length 640 pages

Edition 4th Edition

Languages

PHP

Tools

Moodle

Concepts

Learning Management System

Author (1):

Alex Büchner

View More author details

Table of Contents (24) Chapters

Preface

1. Chapter 1: Installing Moodle

2. Chapter 2: Exploring the Moodle System FREE CHAPTER

3. Chapter 3: Exploring Courses, Users, and Roles

4. Chapter 4: Managing Courses and Enrolments

5. Chapter 5: Managing Users, Cohorts, and Authentication

6. Chapter 6: Managing Permissions, Roles, and Capabilities

7. Chapter 7: Enhancing Moodle’s Look and Feel

8. Chapter 8: Understanding Moodle Plugins

9. Chapter 9: Configuring Educational Features

10. Chapter 10: Configuring Technical Features

11. Chapter 11: Enabling Mobile Learning

12. Chapter 12: Gaining Insights through Moodle Reporting and Analytics

13. Chapter 13: Ensuring Moodle Security

14. Chapter 14: Complying with Data Protection Regulations

15. Chapter 15: Optimizing Moodle Performance

16. Chapter 16: Avoiding Sleepless Nights – Moodle Backup and Restore

17. Chapter 17: Working with Moodle Admin Tools

18. Chapter 18: Integrating External Systems Using Moodle Web Services

19. Chapter 19: Setting Up Moodle Networking

20. Chapter 20: Supporting Multi-Tenancy

21. Index

Why subscribe?

22. Other Books You May Enjoy

Appendix: Configuration Settings

Ensuring system security

In the last section of this Moodle security chapter, we deal with configuration settings impacting system security, covering access to dataroot, cron execution, secure HTTP, and the IP blocker.

Configuring access to dataroot

In the Notifications screenshot earlier in the chapter, you probably spotted the warning that the dataroot directory is directly accessible via the internet. Moodle requires additional space on a server to store uploaded files, such as course documents and user pictures. The directory is called dataroot and must not be accessible via the web. If this directory is accessible directly, unauthorized users can get access to content.

Important note

$CFG->dataroot must not be accessible via the web!

To prevent dataroot from being accessible, move the directory outside the web directory (ensure not to mangle permissions) and modify config.php accordingly by changing the $CFG->dataroot entry.

In externally hosted environments...