Thursday, March 24, 2011

Moodle Security: A Review

Even if you're using a third-party service for your learning management system (LMS), it is still important to be mindful of security, and to understand the ins and outs of where the vulnerabilities exist. For Moodle administrators, the issue of security is important on a number of levels. First, are privacy issues and regulations; second, are integrity issues, as you seek to keep your information and data intact; third, are authentication issues to protect users. Finally, is the issue of ongoing bot activity that can potentially hijack your server and make it perform in ways that you would prefer it not to.

Packt Publishing's Moodle Security ( addresses concerns of both administrators and users. The book provides information that can be helpful in addressing the very real legal liabilities that occur with security breaches.

The organization of the book is easy to follow, and screen shots allow the user to work through the processes in a step-by-step way, and it allows both Linux and Windows users to implement security protocols for Moodle.

The first several chapters have to do with securing Linux and Windows servers. The chapters that deal with authentication, roles, and permissions include a variety of configurations, that include installation procedures.

On the side of user authentication and content assurance, the chapters are thorough and clear. Some current and ever-evolving threats -- bots, viruses, and other types of vulnerabilities are dealt with on a conceptual level as well as with step-by-step instructions.

One area that could be expanded in the Moodle Security is the underlying approach to computer forensics and historical approaches to determining crime / criminal elements.

Note: This title and other Moodle titles are available at a discount through the publisher for a limited time. (Moodle March campaign).

Blog Archive