User Security
The key to the security of your system lies in making sure that users only have access to their privileged areas. In this section we will be dealing with access to Moodle, passwords and security in roles.
Access to Moodle
Users can access Moodle in different ways and it is important to configure access mechanisms correctly.
Self-Registration
Self-registration is a great feature, which reduces the workload of the administrator significantly. However, it poses a potential risk of unwanted users creating an account either manually or automatically. To reduce this risk, two pairs of settings are located in the Common settings of Users | Authentication | Manage Authentication.
Allowed and Denied email domains
ReCAPTCHA private-and public-keys
The settings have been described in detail in Chapter 5.
Guest Access
Moodle provides a feature called guest access to users who do not wish to register with the site. While this is very useful for some public sites (such as moodle.org), it is unwanted...
