Ian Wild’s new book, Moodle 4 Security (Packt Publications, 2024), equips the Moodle administrator and the IT team to protect all aspects of Moodle, from Moodle server security to Moodle application security, including Moodle infrastructure modeling, and strategies for educating the weakest security links – the individual users.
Link to the text: https://www.amazon.com/Moodle-Security-administrators-regulating-infrastructure/dp/1804611662
The book begins by describing the depth and the scope of the problem, while providing a short history of hacking, understanding the nature of cybersecurity risk with Moodle, and the consequences of doing nothing. It moves to a section that explains how to identify threats, and how to use programs such as STRIDE and other Open Web Application Security projects that can be used to defend against many types of cybersecurity threats.
A large section of the book is devoted to Moodle server security. Wild guides the reader through a step-by-step process of building a secure Linux server which includes enabling TTS/SSL to have a secure SSL certificate, selecting the best firewalls, and exploring server immutability. The process of assuring Moodle server security also involves endpoint protection, denial of service protection, and also making sure to have a backup and disaster recovery. Wild clearly presents options for each level of protection and gives clear, easy-to-implement selections.
Another important section of the book deals with Moodle Application security. This aspect has to do with privacy concerns, a data integrity plan, and a review of the various types and functionalities of Moodle applications with an end to helping the user avoid fall into any pitfalls.
Ian Wild, a technologist and developer of simulations for AVEVA, has many years of experience with Moodle and thoroughly understands the reasons why having a good security solution for the organization’s Moodle installation is imperative in today’s world. The information and solutions presented in this book could not have come out at a better time.