Chapter 10. Moodle Security
Moodle, like any other web application, has the potential to be misused. Moodle has dedicated an entire administration section to security settings, using which you can fine-tune Moodle's safety. After providing an overview of Moodle security, you will learn about the following topics:
Notifications
We are setting up a number of notification mechanisms that warn about potential security issues.
User security
We are looking at access to Moodle (self-registration, guest access, protection of user details, and course managers), Moodle passwords, and security in roles.
Data and content security
We will be dealing with potential issues in content created within Moodle and visibility of that content. You will learn how to set up a site policy and how to configure the antivirus scanner.
System security
We are discussing configuration settings (location of the dataroot directory and the cron process), HTTPS, and module security.
