Security and privacy

How to keep your Moodle site secure and methods for increasing privacy.

Documentation: Security, Security FAQ and Increasing privacy in Moodle
Forum moderator: Dan Poltawski

Before starting a new discussion topic, please check the Security FAQ and try a forum search.

DO NOT REPORT NEW VULNERABILITIES HERE!

New security issues should be reported in the Moodle Tracker with an appropriate security level.


Page:  1  2  3  4  5  6  7  8  9  ()
DiscussionStarted byRepliesLast post
Self Enrolment - enrolment key issue Picture of Katrina Nicholson Katrina Nicholson 4 Rick Jerz
Fri, Mar 6, 2015, 9:45 PM
Sharing RSS links Picture of mandy honeyman mandy honeyman 1 jason wilson
Fri, Mar 6, 2015, 5:50 PM
Create a moodle failover system Picture of Chris Pekar Chris Pekar 2 Chris Pekar
Fri, Mar 6, 2015, 4:53 PM
How to protect copyright content (videos): your ideas? Picture of Chris Pekar Chris Pekar 0 Chris Pekar
Fri, Mar 6, 2015, 1:11 AM
SSL certificate issues Picture of raghav agarwal raghav agarwal 10 Bret Miller
Fri, Mar 6, 2015, 12:37 AM
Best way of securely separating different clients Picture of Chris Webb Chris Webb 1 Robin Woodley
Mon, Mar 2, 2015, 7:09 AM
How to fix XSS trusted users problem Picture of Monico Briseño Monico Briseño 11 Tim Hunt
Fri, Feb 27, 2015, 6:44 PM
Cross-Site Request Forgery (CSRF) in Moodle default pages - help Picture of Vincent Gullotta Vincent Gullotta 15 James McLean
Wed, Feb 25, 2015, 7:57 AM
Setting up a consumer key on a moodle site Picture of David Price David Price 0 David Price
Sun, Feb 22, 2015, 9:02 PM
security overview: default role for all users not change Picture of sonia sonia sonia sonia 1 Mahmut TEKER
Tue, Feb 17, 2015, 5:07 PM
Moodle URL Picture of Sara MAhmoud Sara MAhmoud 2 Sara MAhmoud
Mon, Feb 16, 2015, 7:56 PM
cron url security Picture of H D H D 1 Damyon Wiese
Thu, Feb 12, 2015, 1:24 PM
If you believe technologies will protect your privacy, think twice! Picture of Visvanath Ratnaweera Visvanath Ratnaweera 2 Visvanath Ratnaweera
Thu, Feb 12, 2015, 12:04 AM
Moodle Security Plugin Picture of Erwin Ancheta Erwin Ancheta 2 Erwin Ancheta
Wed, Feb 11, 2015, 1:19 PM
Cloudflare Picture of James Easton James Easton 6 Visvanath Ratnaweera
Tue, Feb 10, 2015, 6:27 AM
2.7.1 hacked Picture of Wendi Turner Wendi Turner 12 Visvanath Ratnaweera
Tue, Feb 10, 2015, 6:22 AM
2.7.1 .htaccess files Picture of Wendi Turner Wendi Turner 0 Wendi Turner
Mon, Feb 9, 2015, 4:23 AM
2.7.1 Permissions Picture of Wendi Turner Wendi Turner 1 Wendi Turner
Mon, Feb 9, 2015, 3:06 AM
Hide courses from groups of users Picture of Duanne Scheepers Duanne Scheepers 4 Rose Phoey
Fri, Feb 6, 2015, 1:15 PM
Authentication Kerberos Picture of Marek Grolms Marek Grolms 2 Marek Grolms
Fri, Feb 6, 2015, 4:00 AM
Moodle and SSL: full site SSL and registration form only SSL issues Picture of Marek Kancelarek Marek Kancelarek 1 Marek Kancelarek
Wed, Feb 4, 2015, 7:13 PM
Re: Spammers Using Self Registration Picture of emmanuel oertle emmanuel oertle 4 Chris Wharton
Mon, Jan 26, 2015, 10:27 PM
Automatic https: redirection Picture of Sal Kaceli Sal Kaceli 1 Bret Miller
Sat, Jan 24, 2015, 2:52 AM
2.7 brute force attack - how to stop Picture of Ian L Ian L 3 Howard Miller
Fri, Jan 23, 2015, 5:37 PM
Moodle created passwords made easier Picture of Tom Wootton Tom Wootton 2 Tom Wootton
Sun, Jan 18, 2015, 1:01 PM
Hide email address by default Picture of Martin O'Mahony Martin O'Mahony 3 Daniel meanock
Sat, Jan 17, 2015, 7:12 AM
setting the allowed mimetypes for file upload as a security measure 6 Di Juwel 0 Di Juwel
Thu, Jan 15, 2015, 6:57 PM
Some students unable to login. Error "...with ID2." Picture of Fred Frazelle Fred Frazelle 2 Fred Frazelle
Thu, Jan 15, 2015, 3:10 PM
Restricting login through portal only Picture of Joan Van Duzer Joan Van Duzer 1 David Perry
Tue, Jan 13, 2015, 6:23 PM
Security recommendations - code directory permissions Picture of bruce chambr bruce chambr 2 Tomasz Muras
Mon, Jan 12, 2015, 7:04 PM
Auditing passwords Picture of Tomasz Muras Tomasz Muras 0 Tomasz Muras
Mon, Jan 12, 2015, 3:23 AM
Disabling Login HTTPS Picture of John Okely John Okely 25 John Okely
Mon, Jan 5, 2015, 9:47 AM
More info about security updates Picture of Tiffany Morgan Tiffany Morgan 2 Tiffany Morgan
Mon, Dec 29, 2014, 11:49 PM
Disabling right-click Picture of James Brown James Brown 5 Guilherme Garutti
Mon, Dec 22, 2014, 4:19 AM
Cookie Consent Warning mandatory in Europe CPER logo Rges Cper 3 Rges Cper
Thu, Dec 18, 2014, 4:02 AM
Fingerprint Scanner to Access Moodle Picture of Eddie Sargent Eddie Sargent 1 Joseph Thibault
Tue, Dec 16, 2014, 3:20 AM
MOODLE :: Security Single-SignOn Picture of Lavanya Manne Lavanya Manne 3 Lavanya Manne
Mon, Dec 15, 2014, 12:52 AM
My Moodle site infected with malware: how to fix it? Picture of Luca Oppizzi Luca Oppizzi 5 alice louis
Sat, Dec 6, 2014, 7:07 PM
URL security testing- Any interest? Picture of david millians david millians 2 david millians
Tue, Dec 2, 2014, 9:53 PM
Switch from https to http Picture of Joost Bosschert Joost Bosschert 3 David Perry
Mon, Dec 1, 2014, 9:49 PM
Tiny Flaw in Moodle/turnitin Link Picture of Sanjok Gurung Sanjok Gurung 2 Sanjok Gurung
Wed, Nov 26, 2014, 1:01 AM
Preventing teachers from editing the general section of a course Picture of Narissa Bayler Narissa Bayler 2 Narissa Bayler
Mon, Nov 24, 2014, 11:55 AM
worms infect site Picture of Lázaro José Carneiro de Sousa Lázaro José Carneiro de Sousa 16 François Lizotte
Fri, Nov 21, 2014, 10:56 PM
Trusted Permission not working. Picture of Clarence Prudhoe Clarence Prudhoe 3 François Lizotte
Fri, Nov 21, 2014, 10:48 PM
Moodle ClamAV Scan Log? Picture of Sam Pearson Sam Pearson 0 Sam Pearson
Thu, Nov 20, 2014, 8:04 PM
How to increase upload size file only in a specific course Picture of Miki Alliel Miki Alliel 2 Miki Alliel
Mon, Nov 17, 2014, 4:08 PM
Assign roles in System Picture of Roseli Mat Nor Roseli Mat Nor 10 reham ali
Sat, Nov 15, 2014, 7:41 PM
CAS and Login As Functionality Picture of Benjamin Derry Benjamin Derry 0 Benjamin Derry
Fri, Nov 14, 2014, 3:36 AM
Course Creator Picture of mohamed hammam mohamed hammam 0 mohamed hammam
Thu, Nov 13, 2014, 9:43 PM
Security Question Picture of Mr. Marc Mr. Marc 6 Ken Task
Mon, Nov 10, 2014, 11:18 AM
The path supplied to Clam is invalid Picture of Saeed Amiri Saeed Amiri 14 Ken Task
Sat, Nov 8, 2014, 5:11 AM
Should user profile images be exposed to shared proxies? Picture of Matteo Scaramuccia Matteo Scaramuccia 0 Matteo Scaramuccia
Fri, Nov 7, 2014, 6:03 AM
Security Fixes / Weekly Builds Picture of Thomas College Thomas College 4 Thomas College
Tue, Oct 28, 2014, 2:33 AM
Security Question Picture of Andrew Taylor Andrew Taylor 18 Cian Scanlon
Wed, Oct 22, 2014, 5:21 PM
My Site has been hacked. HELP Picture of Fergal McCann Fergal McCann 7 Guillermo Madero
Tue, Oct 21, 2014, 11:30 PM
IP Blocker - help Picture of Paul Baumeister Paul Baumeister 5 angel locsin
Tue, Oct 21, 2014, 1:50 PM
Need to block access to my Tags/search.php Picture of Yossi Koren Yossi Koren 1 Ken Task
Tue, Oct 21, 2014, 6:50 AM
How to keep Moodle data safe from server admins? Picture of Ohto Nordberg Ohto Nordberg 3 Visvanath Ratnaweera
Sat, Oct 18, 2014, 11:06 PM
Moodle does not restrict file types for uploads??? Security Risk??? Picture of Rob Barnett Rob Barnett 16 Sam Pearson
Tue, Oct 14, 2014, 10:54 PM
Interests, profile picture, and Google image search? Picture of Michael Gerszewski Michael Gerszewski 3 Daniel Neis Araujo
Tue, Oct 14, 2014, 1:32 AM
Easy authentication for children and adults? Picture of Brylie Oxley Brylie Oxley 0 Brylie Oxley
Fri, Oct 10, 2014, 5:22 PM
Hiding email addresses in Moodle 2.6 forums Picture of John Edmiston John Edmiston 1 Helen Foster
Thu, Oct 9, 2014, 4:05 AM
Moodle guest autologin redirect to login page Picture of Vincent Dewez Vincent Dewez 1 Helen Foster
Tue, Oct 7, 2014, 9:22 PM
Solution worms infect site Picture of Lázaro José Carneiro de Sousa Lázaro José Carneiro de Sousa 0 Lázaro José Carneiro de Sousa
Mon, Oct 6, 2014, 11:24 PM
http for login Picture of Pete Tyrer Pete Tyrer 0 Pete Tyrer
Sun, Oct 5, 2014, 1:38 AM
External database settings or example Picture of Henk Petter Henk Petter 0 Henk Petter
Thu, Oct 2, 2014, 5:21 AM
New Install: dataroot exposure to web, security issue Picture of Brad PIerce Brad PIerce 3 Brad PIerce
Tue, Sep 30, 2014, 11:29 PM
Site Policy Acceptance Log Picture of James England James England 2 James England
Sun, Sep 28, 2014, 4:01 PM
thematoweb.com site Picture of Leta Rogers Leta Rogers 1 Richard Oelmann
Tue, Sep 23, 2014, 2:30 PM
Your thoughts on this hypothetical situation (how to prevent and identify) Picture of Joseph Thibault Joseph Thibault 7 Joseph Thibault
Mon, Sep 22, 2014, 10:16 PM
HTTPS login on and off campus Picture of Eric Albert Eric Albert 2 Eric Albert
Wed, Sep 17, 2014, 9:00 PM
Problem with spam: Clic to Continue > by Text-Enhance Picture of Álvaro López Rojas Álvaro López Rojas 6 Raquel Sacristán P.
Mon, Sep 15, 2014, 5:25 PM
Admin Notification for self registration users with their details Picture of Tom Farrow Tom Farrow 0 Tom Farrow
Fri, Sep 12, 2014, 11:50 PM
EU cookies law and Moodle Picture of Gonzalo Castells Ortells Gonzalo Castells Ortells 4 Matt Bury
Fri, Sep 12, 2014, 9:16 PM
Remove few links under site administration for manager Picture of Melvin Richard Melvin Richard 2 Melvin Richard
Fri, Sep 12, 2014, 5:25 PM
Login errors form unknown users every 5-7 minutes? Mmmm nice!! Tony Chilvers 0 Tony Chilvers
Fri, Sep 12, 2014, 3:39 PM
Single Sign On With Forefront Picture of Paul L Paul L 7 David Perry
Wed, Sep 10, 2014, 4:42 PM
Permissions in 2.7 for Plugin Installer Picture of Eric Albert Eric Albert 4 Eric Albert
Wed, Sep 10, 2014, 3:52 AM
Invalid Login all the time. Picture of alex crampton alex crampton 8 James Miller
Mon, Sep 8, 2014, 1:15 PM
Deny access to/Hide participant listing when logged in - enrolled students Picture of s n s n 22 Chuck Barry`
Thu, Sep 4, 2014, 3:15 AM
Restricting Participants List Picture of Chuck Barry` Chuck Barry` 2 Chuck Barry`
Wed, Sep 3, 2014, 3:02 AM
Guest access who can only view certain uploaded assignments Picture of Rachel Chavez Rachel Chavez 4 Rachel Chavez
Tue, Sep 2, 2014, 10:42 PM
HP's fortify on demand security review: "Session Token Passed in Query String" Picture of Franco Pomidoro Franco Pomidoro 4 Franco Pomidoro
Tue, Sep 2, 2014, 8:18 PM
"Site policy URL for guests" keeps getting auto filled Picture of Melissa Benson Melissa Benson 7 Daniel Thies
Fri, Aug 29, 2014, 5:24 AM
Possible Hack? What to do next? DasNic Nic Ruley 7 Tim Vaughn
Mon, Aug 25, 2014, 8:25 AM
Uploading files to user profiles Picture of sherri g sherri g 3 Jordi Fontseca
Thu, Aug 21, 2014, 3:58 PM
HTTP to HTTPS converter for external content Picture of John Okely John Okely 8 Tim Hunt
Tue, Aug 19, 2014, 8:22 PM
Restore a course after deleting Picture of Olena Korol Olena Korol 1 Catherine Pinnell
Thu, Jul 31, 2014, 9:44 PM
Multiple users, same username and password Picture of Andrew Hayes Andrew Hayes 2 Andrew Hayes
Tue, Jul 29, 2014, 9:10 PM
300 login error Picture of moodle question moodle question 0 moodle question
Fri, Jul 25, 2014, 9:12 PM
Course Category acess through LDAP Picture of Catherine Pinnell Catherine Pinnell 0 Catherine Pinnell
Wed, Jul 23, 2014, 3:54 AM
SSL, custom domains, general security and platform curiosities Picture of Chris Wagner Chris Wagner 0 Chris Wagner
Tue, Jul 22, 2014, 9:25 PM
hacking of moodle learning platform Picture of henri pelissier henri pelissier 16 Chris Pangelinan
Mon, Jul 21, 2014, 8:23 AM
Checkpoint Firewall blocking Moodle Posts Picture of Sam McNeill Sam McNeill 5 Eric Katchan
Fri, Jul 18, 2014, 1:00 AM
Allow Unauthenicated Users to View Gallery Picture of Matthew Dodds Matthew Dodds 4 Matthew Dodds
Thu, Jul 17, 2014, 4:36 PM
temporary/one-time-use password for user Picture of Kevin Puventhiranathan Kevin Puventhiranathan 3 Nitin Agrawal
Sat, Jul 12, 2014, 5:12 AM
Security for Online services Picture of sasa lk sasa lk 0 sasa lk
Thu, Jul 10, 2014, 10:21 PM
SECURITY: Disable themes.googleusercontent and other cross-site linking Picture of Leon Franken Leon Franken 0 Leon Franken
Thu, Jul 10, 2014, 8:48 PM
Spammers Using Self Registration Picture of Mark Iannone Mark Iannone 20 Greg Padberg
Wed, Jul 9, 2014, 12:00 AM
Should I use SSL for Login? Why not? Picture of Paul L Paul L 3 John Okely
Mon, Jul 7, 2014, 9:18 AM
Page:  1  2  3  4  5  6  7  8  9  ()