Hello everyone,
I work at a small online university that runs moodle for our online courses.
Our moodle administrator has recently moved on, and will no longer be with our company. We managed to log on to moodle, and change the administrator password, and delete an personal or test accounts, but we are wondering what else we need to know in terms of securing our moodle site.
What else do I have to change in order to prevent access to our site by our former employee?
Are there back end database access's that need to be closed?
He was basically the sole administrator for all areas of Moodle.
We will be hiring a new administrator soon, but want to keep things secure in the mean time.
Thank you so much for your help and advice!!
In reply to Amelia Christensen
Re: Moodle Administrator moving on - Securing moodle site
by Michael Penney -
A great deal depends on how much you trust the person who left - you might want to change the password any other user with more than basic access (say course creators or any sort of sub-admins).
If the admin had Cpanel/SFTP/SSH access (the could log directly into the server other than through Moodle), you should change the server and perhaps the database passwords.
If you are really worried, you might need to change all user passwords and carefully check your server for any unusual scripts or applications.
If the admin had Cpanel/SFTP/SSH access (the could log directly into the server other than through Moodle), you should change the server and perhaps the database passwords.
If you are really worried, you might need to change all user passwords and carefully check your server for any unusual scripts or applications.