Security and privacy

How to keep your Moodle site secure and methods for increasing privacy.

Documentation: Security, Security FAQ and Increasing privacy in Moodle

Before starting a new discussion topic, please check the Security FAQ and try a forum search.

DO NOT REPORT NEW VULNERABILITIES HERE!

New security issues should be reported in the Moodle Tracker with an appropriate security level.

Showing 100 of 1366 discussions
  Discussion Started by Replies Last post Created  
EU General Data Protection Regulation (GDPR) compliance
Picture of Martin Dougiamas Martin Dougiamas
100 Wed, May 17, 2017, 9:03 PM
Vulnerabilities in Moodle code scan
Picture of Vinod Kumar Aleti Vinod Kumar Aleti
10 Wed, Jul 17, 2019, 10:28 PM
Securing activity "files"?
Picture of Jeff M Jeff M
4 Fri, Jul 12, 2019, 1:18 PM
SMTP Email password viewing
Picture of Chris Swinney Chris Swinney
3 Fri, Jul 12, 2019, 4:02 AM
Privacy in an LTI tool provider
Picture of George Schaathun George Schaathun
0 Fri, Jul 12, 2019, 7:15 PM
Passwords and User Uploads
Picture of Stephen Oxlade Stephen Oxlade
0 Fri, Jul 12, 2019, 12:14 AM
GDPR is a no go for now
Picture of Ray Havlin Ray Havlin
5 Wed, Jan 23, 2019, 9:54 AM
ZAP Scanning Report - High Risk SQL Injection on Login Page
Picture of Pradipta Suryadi Pradipta Suryadi
3 Tue, Jul 2, 2019, 12:01 PM
how to display last ip address in column of user list ?
Picture of pierre REMY pierre REMY
3 Fri, Jun 28, 2019, 3:42 PM
how to restrict the accessibility or visibility of user profile fields ?
Picture of pierre REMY pierre REMY
5 Thu, Jun 20, 2019, 4:37 PM
can we make visible course only for an IP address ?
Picture of pierre REMY pierre REMY
7 Sat, Mar 2, 2019, 12:16 AM
LTI Vulnerability
Picture of Robert Kovacich Robert Kovacich
5 Sun, Mar 31, 2019, 2:12 AM
Retention period.
Picture of Henrik sune Pedersen Henrik sune Pedersen
0 Fri, Jun 14, 2019, 4:22 PM
SSL issue in moodle home page.
Picture of sarendar vennapureddy sarendar vennapureddy
6 Fri, May 31, 2019, 3:38 PM
reset admin password?
Picture of Rachel Horst Rachel Horst
13 Tue, Jun 6, 2017, 4:44 AM
Account lockout threshold? Why is the default no?
Picture of Billy Zwiener Billy Zwiener
3 Thu, May 30, 2019, 9:58 AM
cannot delete some users
Picture of stefan weber stefan weber
4 Mon, May 20, 2019, 7:25 PM
Profile picture changes on specific user
Picture of Joan Llimiñana Joan Llimiñana
4 Thu, May 16, 2019, 7:22 PM
Lots of requests in access_log for outbound connections
Picture of David White David White
15 Thu, May 16, 2019, 8:55 AM
What does your upgrade schedule look like to keep up with security?
Picture of Rauhan Farrukh Rauhan Farrukh
4 Fri, May 10, 2019, 10:52 PM
User deletion request for plugins - forum posts
Picture of Vincent VEBER Vincent VEBER
0 Fri, May 17, 2019, 8:23 PM
Useragent
Picture of Robert Hegestedt Robert Hegestedt
2 Fri, May 17, 2019, 1:27 AM
Course Categories Page Public
Picture of Wolf Ventir Wolf Ventir
4 Tue, May 14, 2019, 7:17 AM
SSL config on CentOS/Nginx
Picture of Martin Williams Martin Williams
22 Tue, Apr 30, 2019, 7:37 AM
Firewall problem
Picture of Robert Hegestedt Robert Hegestedt
5 Tue, Apr 16, 2019, 1:39 AM
Is this possible? Policies and agreements view after login, not before...
Picture of Oli G. Oli G.
0 Wed, May 1, 2019, 4:06 PM
ssl problem
Picture of FaRzad Shami FaRzad Shami
1 Wed, Mar 6, 2019, 4:43 PM
Audit log of user activity
Picture of Kate Dawson Kate Dawson
6 Mon, Apr 15, 2019, 10:32 PM
Restricting site access
Picture of Carl Byerley Carl Byerley
3 Mon, Apr 22, 2019, 1:19 AM
Manual Login
Picture of Syed Ali Syed Ali
5 Wed, Apr 24, 2019, 12:05 AM
How can I block cURLs to eliminate phony accounts?
Picture of Deb Smith Deb Smith
1 Thu, Apr 18, 2019, 5:04 AM
Moodle reverse proxy and URL replace.php not working
Picture of jitendra Phull jitendra Phull
11 Sat, Apr 6, 2019, 8:50 PM
security problem with mod/scorm/datamodel.php
Picture of Michał Boszke Michał Boszke
1 Wed, Apr 17, 2019, 12:30 AM
LDAP Authantication
Picture of Tumediso Sebonego Tumediso Sebonego
3 Mon, Apr 8, 2019, 8:10 PM
Plugin privacy registry shows nothing
Picture of Lorin Toews Lorin Toews
0 Mon, Apr 15, 2019, 12:10 PM
Password Issue with moodle 3.4.6
Picture of Tech Academy Tech Academy
0 Sat, Apr 13, 2019, 1:20 PM
Secure MP4 videos
Picture of Sa Ku Sa Ku
5 Tue, Apr 9, 2019, 12:59 PM
Is Moodle OWASP compliant?
Picture of Ivica Matotek Ivica Matotek
1 Tue, Apr 9, 2019, 5:41 PM
login to Moodle from a script/application
Picture of Kris Van Gelder Kris Van Gelder
3 Mon, Feb 25, 2019, 8:44 PM
Is there a way to completely delete users including all their data?
Picture of stefan weber stefan weber
24 Tue, Sep 18, 2018, 8:53 PM
Confidentiality policy for forum / posts sent
Picture of Francis Vendrell Francis Vendrell
0 Thu, Apr 4, 2019, 10:21 PM
SSL installation
Picture of Akhil Verma Akhil Verma
1 Thu, Apr 4, 2019, 2:28 PM
Password Reset Process
Picture of Pince AUS Pince AUS
0 Mon, Apr 1, 2019, 9:57 AM
The Policy consent form for the teachers only?
Picture of Antti Peltonen Antti Peltonen
1 Wed, Mar 27, 2019, 3:33 PM
Data export and GDPR comliance
Picture of Flotter Totte Flotter Totte
3 Mon, Mar 25, 2019, 3:49 PM
Activity completion and GDPR compliance
Picture of Flotter Totte Flotter Totte
2 Mon, Mar 25, 2019, 1:33 PM
Content lockdown
Picture of Kenneth Hess Kenneth Hess
6 Thu, Mar 21, 2019, 9:43 PM
Anonymizing Data on Students
Picture of Roger Domínguez Argemí Roger Domínguez Argemí
5 Tue, Mar 12, 2019, 7:55 PM
Cookie Consent and Privacy Notice Popup
Picture of Alan Christie Alan Christie
5 Fri, Jul 13, 2018, 9:41 PM
Is thar any way to make Moodle site at least basicly GDPR compliant?
Picture of Zoran Jancic Zoran Jancic
0 Mon, Mar 18, 2019, 5:04 PM
Deleting old users
Picture of Conn Warwicker Conn Warwicker
2 Tue, Jul 31, 2018, 5:35 PM
Restricting Access by Cohort
Picture of Elizabeth Ford Elizabeth Ford
1 Fri, Mar 1, 2019, 5:01 AM
Deleting user accounts for users that are not using the system anymore
Picture of Zoran Jancic Zoran Jancic
0 Fri, Mar 15, 2019, 7:10 PM
Any Idea on the Possibility of Hacking?
Picture of Rafiq Muhammad Rafiq Muhammad
2 Thu, Mar 14, 2019, 9:24 PM
defining admin/mamager role for specific course
Picture of altan ahmet altan ahmet
1 Fri, Mar 8, 2019, 4:46 PM
Testing Moodle security
Picture of Luke P Luke P
1 Fri, Mar 8, 2019, 5:50 PM
Changes to Password Procedure
Picture of Conor O'Neill Conor O'Neill
3 Tue, Feb 19, 2019, 6:32 PM
adding additional admins & assigning specific roles
Picture of altan ahmet altan ahmet
3 Wed, Feb 27, 2019, 9:15 PM
Cohorts View hidden categories
Picture of Matthew Landseadel Matthew Landseadel
1 Wed, Feb 27, 2019, 2:10 PM
Notifications regarding Data Privacy requests processing
Picture of seaghan moriarty seaghan moriarty
0 Wed, Feb 27, 2019, 6:02 AM
Removal of loginpasswordautocomplete Headaches
Picture of Wolf Ventir Wolf Ventir
0 Tue, Feb 26, 2019, 10:15 PM
Deleted users still show up in Forum thread overview
Picture of stefan weber stefan weber
5 Fri, Feb 22, 2019, 8:13 PM
Does Moodle log admin activity?
Picture of Cathal O'Riordan Cathal O'Riordan
2 Thu, Feb 14, 2019, 10:28 PM
Firewall Recommended Settings
Picture of Ali Arekat Ali Arekat
4 Tue, Feb 5, 2019, 8:18 PM
OSSEC blocks ajax call
Picture of Venizia Venizia Venizia Venizia
0 Sat, Feb 2, 2019, 2:15 AM
Moodle 3.6.1+ (20181210) issue with tool_policy
Picture of Joost Elshoff Joost Elshoff
2 Fri, Jan 25, 2019, 9:33 PM
dataprivacy tool blocking cron job from running
Picture of stefan weber stefan weber
0 Thu, Jan 24, 2019, 5:00 PM
Can't edit moodle's password policy
Picture of Salome Tkhilaishvili Salome Tkhilaishvili
2 Fri, Dec 28, 2018, 2:46 PM
Suppression of advice about php register_global at documentation
Picture of Joan Cervan Joan Cervan
0 Fri, Jan 18, 2019, 6:28 PM
User Policy and agrement
Picture of Tone Engebretsen Tone Engebretsen
1 Sun, Jan 6, 2019, 5:54 PM
Lots of invalid login token errors in the logs
Picture of Diane Soini Diane Soini
14 Wed, Jan 9, 2019, 1:23 AM
SSL connection to Moodle DB?
Picture of Paul Martin Paul Martin
33 Tue, Oct 2, 2018, 11:32 PM
Plugin privacy registry error
Picture of Henrik sune Pedersen Henrik sune Pedersen
2 Thu, Jan 3, 2019, 6:48 PM
How to Download my Personal Data or other's Data
Picture of Alan Schrock Alan Schrock
16 Thu, Nov 29, 2018, 10:50 PM
Host with LiquidWeb - mod_security rules
Picture of Ken Task Ken Task
2 Tue, Dec 25, 2018, 12:48 AM
ClamAV and Cwatch
Picture of Wynand Louw Wynand Louw
4 Fri, Dec 28, 2018, 12:20 AM
Corrections to the Moodle landscape as a result of the Facebook's breaches
Picture of Visvanath Ratnaweera Visvanath Ratnaweera
8 Tue, Mar 27, 2018, 11:18 PM
ClamAV server
Picture of callum Wood callum Wood
2 Wed, Dec 12, 2018, 5:07 PM
Restrict teacher's ability to backup courses including userdata?
Picture of stefan weber stefan weber
2 Mon, Dec 17, 2018, 8:37 PM
GuardianKey - A new plugin of Security
Picture of Gesiel Bernardes Gesiel Bernardes
0 Mon, Dec 17, 2018, 9:27 PM
IP blocker error when access via html script
Picture of Karishma Tiwari Karishma Tiwari
0 Mon, Dec 17, 2018, 3:26 PM
How do I finetune Website Copier HTTrack or Cyotek WebCopy?
Picture of Rolf Cper Rolf Cper
0 Wed, Dec 12, 2018, 5:01 PM
disable video right click
Picture of rasha fawzy rasha fawzy
1 Sat, Dec 8, 2018, 3:14 AM
Cell-like groups possible?
Picture of Sam Stevens Sam Stevens
0 Wed, Dec 5, 2018, 5:18 PM
Quiz Answers "Keywords" Not Working
Picture of deepak rs deepak rs
3 Tue, Dec 4, 2018, 1:36 AM
User's Choice of Course
Picture of deepak rs deepak rs
0 Tue, Dec 4, 2018, 1:20 AM
adding a wildcard security ssl for a plugin
Picture of Aretha Etienne Aretha Etienne
0 Sat, Dec 1, 2018, 1:51 AM
Unable to Log In as admin - Moodle 3.5
Picture of Dave Emsley Dave Emsley
1 Fri, Nov 30, 2018, 7:01 PM
Manual enrollment and obligate change password
Picture of Reinier Batterink Reinier Batterink
0 Fri, Nov 30, 2018, 4:41 PM
ClamAV Plugin Config Paths
Picture of Wolf Ventir Wolf Ventir
3 Wed, Nov 21, 2018, 4:44 AM
content protection method
Picture of dave lewis dave lewis
2 Mon, Nov 26, 2018, 8:31 PM
No checkboxes on Data Requests page
Picture of Peter Diedrichs Peter Diedrichs
2 Thu, Nov 22, 2018, 11:15 PM
HTTP to HTTPS
Picture of LAVS EDUCATOR LAVS EDUCATOR
1 Sun, Nov 25, 2018, 7:13 AM
data privacy plugin 3.3.5 hanging in cron
Picture of Tim Gildersleeve Tim Gildersleeve
11 Wed, May 9, 2018, 5:25 PM
The perils of the BIG "helping" school IT
Picture of Visvanath Ratnaweera Visvanath Ratnaweera
1 Mon, Nov 19, 2018, 7:42 PM
Problem with HTTPS
Picture of LAVS EDUCATOR LAVS EDUCATOR
1 Mon, Nov 19, 2018, 11:03 AM
Fast registration possible?
Picture of Colin Peters Colin Peters
6 Fri, Nov 9, 2018, 9:38 PM
looking for vulnerable (old) plugins for Moodle
Picture of Jurgen Gaeremyn Jurgen Gaeremyn
1 Mon, Nov 19, 2018, 4:11 AM
Completely isolated courses
Picture of Hannu Mattila Hannu Mattila
10 Fri, Nov 9, 2018, 4:58 AM
Privacy Policy - Different Languages
Picture of Stephen Oxlade Stephen Oxlade
5 Fri, Oct 19, 2018, 6:26 PM