Security and privacy

How to keep your Moodle site secure and methods for increasing privacy.

Documentation: Security, Security FAQ and Increasing privacy in Moodle
Forum moderator: Dan Poltawski

Before starting a new discussion topic, please check the Security FAQ and try a forum search.

DO NOT REPORT NEW VULNERABILITIES HERE!

New security issues should be reported in the Moodle Tracker with an appropriate security level.


Page:  1  2  3  4  5  6  7  8  ()
DiscussionStarted byRepliesLast post
reCaptcha Preventing User Registration Picture of Fred Roller Fred Roller 0 Fred Roller
Thu, Apr 24, 2014, 3:19 AM
[URGENT] Heartbleed OpenSSL Vulnerability Picture of Matthew Spurrier Matthew Spurrier 9 Matt Bury
Thu, Apr 17, 2014, 9:00 PM
students opening new internet windows on iPads during quizzes Picture of Rob Dahlin Rob Dahlin 1 Jason Hardin
Mon, Apr 14, 2014, 10:11 AM
Authenticating Access to Large Amount of Static Data Picture of Warren Toomey Warren Toomey 2 Warren Toomey
Sat, Apr 12, 2014, 5:03 AM
Ads displayed Moodle sites where none should be (a browser issue actually) Picture of Joseph Thibault Joseph Thibault 0 Joseph Thibault
Sat, Apr 12, 2014, 2:40 AM
changing multiple passwords at once Picture of Rob Dahlin Rob Dahlin 0 Rob Dahlin
Fri, Apr 11, 2014, 9:42 PM
password requirement too complex Picture of jenny clarke jenny clarke 2 Guillermo Madero
Fri, Apr 11, 2014, 12:57 AM
SSL certificate issues Picture of raghav agarwal raghav agarwal 8 Daniel Kaelin
Tue, Apr 8, 2014, 11:17 PM
SSL Proxy woes Picture of Ben Steeples Ben Steeples 5 Daniel Kaelin
Tue, Apr 8, 2014, 11:13 PM
Deny access to/Hide participant listing when logged in - enrolled students Picture of s n s n 20 James D
Mon, Apr 7, 2014, 11:54 PM
Anti-minimization ability Picture of Michael Spain Michael Spain 0 Michael Spain
Wed, Apr 2, 2014, 11:44 PM
How to get course completed date..? Picture of Atul Kachhadiya Atul Kachhadiya 0 Atul Kachhadiya
Mon, Mar 31, 2014, 7:49 PM
Database crashed Picture of Ahmed Belhani Ahmed Belhani 3 Ahmed Belhani
Sat, Mar 29, 2014, 4:46 AM
IP Filter for a resource or an activity Picture of Trevor Li Trevor Li 0 Trevor Li
Fri, Mar 28, 2014, 7:24 PM
IP lockdown for admin account Picture of Martin O'Mahony Martin O'Mahony 0 Martin O'Mahony
Fri, Mar 28, 2014, 5:48 PM
course file access without login into moodle Picture of zizo zizo zizo zizo 5 Richard Oelmann
Thu, Mar 27, 2014, 7:32 AM
verifying security patches Picture of john saylor john saylor 0 john saylor
Tue, Mar 25, 2014, 10:34 PM
Security of external manifests Picture of Johan Meerkerk Johan Meerkerk 2 Johan Meerkerk
Tue, Mar 25, 2014, 4:20 PM
Sharing Authentication With External Site Picture of Jack O'Neill Jack O'Neill 0 Jack O'Neill
Thu, Mar 20, 2014, 5:19 PM
"Print screen / copy page" Protection Picture of Irham Latif Irham Latif 4 Tim Hunt
Tue, Mar 18, 2014, 6:34 AM
SSO across Active Directory forests Picture of Colleen Romero Colleen Romero 4 Iñaki Arenaza
Wed, Mar 12, 2014, 12:23 AM
Make username and password case insensitive Picture of Micky Fokken Micky Fokken 12 Petr Škoda
Wed, Mar 5, 2014, 11:00 AM
MOODLE REGISTRATION Picture of Jyoti Madkar Jyoti Madkar 2 Emma Richardson
Tue, Mar 4, 2014, 7:46 PM
Moodle and Mod_Evasive Picture of Brian Yanosik Brian Yanosik 1 Howard Miller
Tue, Feb 25, 2014, 7:36 PM
What is a security issue? Tim at Lone Pine Koala Sanctuary Tim Hunt 1 Michael de Raadt
Wed, Feb 19, 2014, 2:21 PM
MAMP & https Go State! Mike Brinkman 13 Chris K
Wed, Feb 19, 2014, 10:45 AM
Installing ssl certificates in moodle server Picture of Christine Mburu Christine Mburu 1 samudaya Nanayakkara
Mon, Feb 10, 2014, 3:59 PM
Firewall settings for Moodle Anya Zinoveva Anya Zinoveva 2 samudaya Nanayakkara
Mon, Feb 10, 2014, 3:25 PM
prevent printing of lessons in Moodle 2.5 Picture of Asana Draper Asana Draper 6 Howard Miller
Tue, Feb 4, 2014, 6:55 AM
SSL Certificate for Moodle Picture of Tim Childe Tim Childe 5 Howard Miller
Mon, Feb 3, 2014, 6:45 PM
reCAPTCHA is not working Pablo Espanola Pablo Española 1 Sarah Jane
Thu, Jan 30, 2014, 7:00 PM
Access rights to catagorys in moodle Picture of Andy Burrows Andy Burrows 11 Andy Burrows
Wed, Jan 29, 2014, 10:12 PM
Websiteadministration does not work correctly after update Picture of Matthias Barmeier Matthias Barmeier 0 Matthias Barmeier
Tue, Jan 28, 2014, 7:56 PM
User Access to Courses by Device and Number of Login Sessions Picture of Steve Gemar Steve Gemar 1 Rob Willemse
Sat, Jan 25, 2014, 9:36 PM
Spammers Using Self Registration Picture of Mark Iannone Mark Iannone 19 Greg Padberg
Thu, Jan 23, 2014, 6:07 AM
Avoid dictionary attacks Picture of Manuel García Manuel García 1 Tim Hunt
Mon, Jan 20, 2014, 7:14 PM
Securing SMTP Picture of Mihai Bojonca Mihai Bojonca 0 Mihai Bojonca
Sat, Jan 18, 2014, 3:50 AM
Uploading files to user profiles Picture of sherri gengenbach sherri gengenbach 2 Isabelle Langeveld
Fri, Jan 17, 2014, 10:08 PM
Can I make an unlisted page? Picture of John Addis John Addis 1 Richard Oelmann
Thu, Jan 16, 2014, 6:41 AM
Help with groups/permissions etc. Picture of Luc Meredith Luc Meredith 2 Emma Richardson
Tue, Jan 14, 2014, 8:19 PM
External Database authentication/enrollment secure communication on a remote server Picture of Ryan Foster Ryan Foster 2 Ryan Foster
Mon, Jan 13, 2014, 10:41 PM
Need security help with university examinations Robert Barone Robert Barone 1 Tim Hunt
Mon, Jan 13, 2014, 3:36 AM
Teachers should only see theire own students/courses Picture of Klaas Hobo Klaas Hobo 14 Tim Childe
Thu, Jan 9, 2014, 8:17 PM
Implementing SSL (https) Picture of Scott Chillemi Scott Chillemi 2 Andrew Nicols
Wed, Jan 1, 2014, 9:56 AM
SSO in Moodle with Oracle DB Picture of rupamoy bhattacharya rupamoy bhattacharya 1 Howard Miller
Tue, Dec 31, 2013, 4:08 PM
Need help on student's assignment become searchable on google scholars Picture of tom tom tom tom 0 tom tom
Fri, Dec 27, 2013, 4:57 PM
Why is it possible to allow actions for sub-roles, even if one didn't has the permission himself? Picture of Jan Eberhardt Jan Eberhardt 1 Tim Hunt
Fri, Dec 20, 2013, 3:23 AM
Service field is empty while creating a Token Picture of Ann S Ann S 0 Ann S
Wed, Dec 18, 2013, 4:03 PM
Secure and httponly cookies Picture of Nicholas Lidden Nicholas Lidden 0 Nicholas Lidden
Wed, Dec 18, 2013, 9:00 AM
LDAP signing Picture of Carl Maschke Carl Maschke 0 Carl Maschke
Wed, Dec 18, 2013, 7:46 AM
my moodle redirect to https and trailing slash Picture of JW Bright JW Bright 3 Brian walker
Wed, Dec 18, 2013, 3:11 AM
Bot registered Picture of worawat wasanapreecha worawat wasanapreecha 2 Helen Foster
Mon, Dec 16, 2013, 10:48 PM
disable SAML Picture of Carl Maschke Carl Maschke 5 Ken Task
Wed, Dec 11, 2013, 10:22 AM
Problem with spam: Clic to Continue > by Text-Enhance Picture of Álvaro López Rojas Álvaro López Rojas 5 Emma Richardson
Wed, Dec 11, 2013, 6:31 AM
Invalid Login all the time. Picture of alex crampton alex crampton 4 Nick Barnes
Wed, Dec 11, 2013, 1:16 AM
Problem: Access to moodle service from outside computers Picture of Álvaro López Rojas Álvaro López Rojas 4 Emma Richardson
Sun, Dec 8, 2013, 2:02 AM
Login error? Picture of Kevin Burton Kevin Burton 0 Kevin Burton
Sat, Dec 7, 2013, 5:20 AM
Recaptcha Ley Picture of Sheetal Uplenchwar Sheetal Uplenchwar 1 Helen Foster
Tue, Nov 26, 2013, 3:59 PM
Active Directory Passwords Picture of Dan Short Dan Short 2 Dan Short
Mon, Nov 25, 2013, 11:23 PM
Added unique login plug-in normally installation,but not work Picture of Kelvin Cheung Kelvin Cheung 0 Kelvin Cheung
Sat, Nov 23, 2013, 1:50 PM
spam Picture of worawat wasanapreecha worawat wasanapreecha 1 Helen Foster
Thu, Nov 21, 2013, 9:19 PM
Maintenance cron; student email security Picture of Sandy Stockholm Sandy Stockholm 1 Guillermo Madero
Wed, Nov 20, 2013, 11:41 PM
Vulnerability scanning Picture of Scott Karren Scott Karren 1 Tim Hunt
Wed, Nov 20, 2013, 12:33 AM
Counter argument required Picture of Just H Just H 5 Marcus Green
Tue, Nov 19, 2013, 8:58 PM
User accounts created Picture of Cristo Alanis Cristo Alanis 1 Cristo Alanis
Thu, Nov 14, 2013, 11:51 PM
security hole: opening moodle on multiple tabs won't logout properly! Picture of Anna M Anna M 1 Tim Hunt
Thu, Nov 14, 2013, 6:40 AM
Securely setting up Moodle 1.9 for Membership requests Kevin Duggan Kevin Duggan 7 Kevin Duggan
Sat, Oct 19, 2013, 2:20 AM
License Key Picture of Tyler Musser Tyler Musser 0 Tyler Musser
Sat, Oct 19, 2013, 1:45 AM
Login page pointing to 3rd party login. Locked out Picture of Michael Weston Michael Weston 1 Marko Vidberg
Fri, Oct 18, 2013, 2:30 AM
"Site policy URL for guests" keeps getting auto filled Picture of Melissa Benson Melissa Benson 1 Marko Vidberg
Fri, Oct 18, 2013, 2:23 AM
Someone try to change password Picture of Anonymous User Anonymous User 1 Jerry West
Thu, Oct 17, 2013, 4:50 PM
SSL Certificate Picture of Doug Bell Doug Bell 2 Jerry West
Thu, Oct 17, 2013, 4:30 PM
Course visibility Picture of Karen Atkinson Karen Atkinson 3 Karen Atkinson
Thu, Oct 17, 2013, 1:29 PM
Guest access permissions Picture of Julie Lindsay Julie Lindsay 0 Julie Lindsay
Sat, Oct 5, 2013, 2:54 PM
Possible Hack? What to do next? DasNic Nic Ruley 6 Tim Vaughn
Tue, Oct 1, 2013, 2:58 AM
log in screen Picture of Toni Phillips Toni Phillips 1 Emma Richardson
Fri, Sep 27, 2013, 9:58 AM
Guests see subscribed students Picture of Michael Iscool Michael Iscool 5 Michael Iscool
Thu, Sep 26, 2013, 3:02 AM
Registration Page with Captcha but without Email Verification Picture of Andrew Bishara Andrew Bishara 2 Matt Bury
Tue, Sep 24, 2013, 11:38 PM
Courses for Teachers...... Enrol one by one by one Oh my God ! look at my jumper... Steve Audus 18 Zeid Fanous
Tue, Sep 24, 2013, 5:30 AM
How to login to Moodle using SSO of WindowsACS Picture of Tim van Steenbergen Tim van Steenbergen 1 David Perry
Mon, Sep 23, 2013, 8:42 PM
SAML via simplesamlphp via windowsAzures ACS to idprovider Picture of Tim van Steenbergen Tim van Steenbergen 1 Tim van Steenbergen
Thu, Sep 19, 2013, 5:35 PM
IP Blocker - help Picture of Paul Baumeister Paul Baumeister 4 Greg Padberg
Thu, Sep 19, 2013, 12:12 AM
Gone wrong with vhost-definition when installing simpleSAMLphp Picture of Tim van Steenbergen Tim van Steenbergen 4 Tim van Steenbergen
Tue, Sep 17, 2013, 5:03 PM
IE10 Login Picture of David Challoner David Challoner 1 AL Rachels
Sun, Sep 15, 2013, 3:13 AM
only my ip addresses allowed and still getting hacked Picture of christian turc christian turc 4 Ken Task
Thu, Sep 12, 2013, 7:22 AM
Read Only Site Picture of Kehinde Okesanjo Kehinde Okesanjo 6 Chris Lewis
Thu, Sep 12, 2013, 12:42 AM
Stop bogus accounts with security question? Picture of Alan Hess Alan Hess 4 Ryan B
Wed, Sep 11, 2013, 9:30 PM
Site getting hacked-php files modified Picture of christian turc christian turc 1 Guillermo Madero
Wed, Sep 11, 2013, 4:26 AM
Safe harbor Certified Hosting Picture of David Grebow David Grebow 3 David Perry
Mon, Sep 9, 2013, 4:41 PM
Students without email Picture of Larry Lueck Larry Lueck 1 Ken Task
Thu, Sep 5, 2013, 7:53 AM
Change date of sended file to system by activity assignment Picture of Ivan Kreškóczi Ivan Kreškóczi 0 Ivan Kreškóczi
Sun, Sep 1, 2013, 2:38 AM
Application Not Authorized To Use CAS Picture of Madison McBrayer Madison McBrayer 1 Emma Richardson
Thu, Aug 29, 2013, 5:21 AM
Denied email domains in Moodle 2.4 Picture of Rick Jerz Rick Jerz 1 Don Hazelwood
Thu, Aug 29, 2013, 12:01 AM
Hacked - popup ads all over Picture of Margaret Richards Margaret Richards 4 Guillermo Madero
Wed, Aug 28, 2013, 3:07 AM
unwanted links Picture of tatiana ramiro tatiana ramiro 2 Richard Oelmann
Tue, Aug 27, 2013, 1:00 AM
Login https Picture of Marco Antoni Marco Antoni 2 Marco Antoni
Fri, Aug 23, 2013, 8:18 PM
restrict guest access to individual files, folders, or activities Picture of Matthew Stockinger Matthew Stockinger 1 Abhi puri
Tue, Aug 20, 2013, 11:28 PM
Site admin Picture of Jerin das Jerin das 1 Emma Richardson
Tue, Aug 13, 2013, 9:54 PM
Accoumts with the name anonfirstname Picture of Giovanni Martinez Giovanni Martinez 4 Giovanni Martinez
Tue, Aug 13, 2013, 8:52 PM
extrange accounts Picture of Giovanni Martinez Giovanni Martinez 2 Giovanni Martinez
Tue, Aug 6, 2013, 4:05 AM
Page:  1  2  3  4  5  6  7  8  ()