Moodle in English: Spam hidden in front page div

Security and privacy

Spam hidden in front page div

This discussion has been locked because a year has elapsed since the last post. Please start a new discussion topic.

Google reported that they are taking my site off of their index because of spam. The links that they provided don't actually show anything (unlike profile spam). However, if you look at the source of my front page there are a bunch of spam entries inside these tage

<div style="display:none;">

I contacted my host and they are looking into the problem.
Any ideas or experience with this?

Average of ratings: -

Permalink | Reply

Well, before last Christmast we had 2000 cases like

http://moodle.org/mod/forum/discuss.php?d=111710

and after that you can find over 2000 similar cases like for example

http://moodle.org/mod/forum/discuss.php?d=115416

and

http://moodle.org/mod/forum/discuss.php?d=114943

Upgrade to moodle 1.9.4 and check Security overview report

http://moodle.org/mod/forum/discuss.php?d=116066

Average of ratings: -

Permalink | Show parent | Reply

Security overview report is in my opinion the best new feature ever added to moodle. Most previous installs have warned administators about some wrong settings but warning is obviously not the best way to prevent sites being hacked. Liberate security politics has allowed people to choose if they want to take a risk and install moodledata web accessible (inside web root) and we can find far too many of those old sites that could be hacked any day.

It's the same for settings of php and permissions. Moodle can't control other installed programs and all settings of php but the good point in new Security overview report is that for the first time in history we get a clear report of possible security risks and info about correcting those settings.

http://docs.moodle.org/en/Security_overview

Average of ratings: -

Permalink | Show parent | Reply