|
Moodle
2.2.1
http://www.collinsharper.com
|
|
Moodle
2.2.1
http://www.collinsharper.com
|
Go to the source code of this file.
Definition at line 33 of file locallib.php.
| enum REPORT_SECURITY_INFO |
Definition at line 30 of file locallib.php.
| enum REPORT_SECURITY_OK |
Definition at line 29 of file locallib.php.
Definition at line 32 of file locallib.php.
Definition at line 31 of file locallib.php.
| report_security_check_configrw | ( | $ | detailed = false | ) |
Verifies config.php is not writable anymore after installation, config files were changed on several outdated server.
| bool | $detailed |
Definition at line 448 of file locallib.php.
| report_security_check_cookiesecure | ( | $ | detailed = false | ) |
Verifies if https enabled only secure cookies allowed, this prevents redirections and sending of cookies to unsecure port.
| bool | $detailed |
Definition at line 412 of file locallib.php.
| report_security_check_defaultuserrole | ( | $ | detailed = false | ) |
Verifies sanity of default user role.
| bool | $detailed |
Definition at line 557 of file locallib.php.
| report_security_check_displayerrors | ( | $ | detailed = false | ) |
Verifies displaying of errors - problem for lib files and 3rd party code because we can not disable debugging in these scripts (they do not include config.php)
| bool | $detailed |
Definition at line 280 of file locallib.php.
| report_security_check_emailchangeconfirmation | ( | $ | detailed = false | ) |
Verifies email confirmation - spammers were changing mails very often
| bool | $detailed |
Definition at line 375 of file locallib.php.
| report_security_check_embed | ( | $ | detailed = false | ) |
Verifies sloppy embedding - this should have been removed long ago!!
| bool | $detailed |
Definition at line 177 of file locallib.php.
| report_security_check_frontpagerole | ( | $ | detailed = false | ) |
Verifies sanity of frontpage role
| bool | $detailed |
Definition at line 673 of file locallib.php.
| report_security_check_globals | ( | $ | detailed = false | ) |
============================================= Issue checks ============================================= Verifies register globals PHP setting.
| bool | $detailed |
Definition at line 85 of file locallib.php.
| report_security_check_google | ( | $ | detailed = false | ) |
Verifies google access not combined with disabled guest access because attackers might gain guest access by modifying browser signature.
| bool | $detailed |
Definition at line 341 of file locallib.php.
| report_security_check_guestrole | ( | $ | detailed = false | ) |
Verifies sanity of guest role
| bool | $detailed |
Definition at line 615 of file locallib.php.
| report_security_check_mediafilterswf | ( | $ | detailed = false | ) |
Verifies sloppy swf embedding - this should have been removed long ago!!
| bool | $detailed |
Definition at line 208 of file locallib.php.
| report_security_check_noauth | ( | $ | detailed = false | ) |
Verifies unsupported noauth setting
| bool | $detailed |
Definition at line 114 of file locallib.php.
| report_security_check_openprofiles | ( | $ | detailed = false | ) |
Verifies open profiles - originally open by default, not anymore because spammer abused it a lot
| bool | $detailed |
Definition at line 309 of file locallib.php.
| report_security_check_passwordpolicy | ( | $ | detailed = false | ) |
Verifies if password policy set
| bool | $detailed |
Definition at line 146 of file locallib.php.
| report_security_check_passwordsaltmain | ( | $ | detailed = false | ) |
| report_security_check_riskadmin | ( | $ | detailed = false | ) |
Lists all admins.
| bool | $detailed |
Definition at line 732 of file locallib.php.
| report_security_check_riskbackup | ( | $ | detailed = false | ) |
Lists all roles that have the ability to backup user data, as well as users
| bool | $detailed |
Definition at line 773 of file locallib.php.
| report_security_check_riskxss | ( | $ | detailed = false | ) |
Lists all users with XSS risk, it would be great to combine this with risk trusts in user table, unfortunately nobody implemented user trust UI yet :-(
| bool | $detailed |
Definition at line 510 of file locallib.php.
| report_security_check_unsecuredataroot | ( | $ | detailed = false | ) |
Verifies fatal misconfiguration of dataroot
| bool | $detailed |
Definition at line 241 of file locallib.php.
| report_security_doc_link | ( | $ | issue, |
| $ | name | ||
| ) |
Definition at line 65 of file locallib.php.
Definition at line 40 of file locallib.php.
Definition at line 35 of file locallib.php.
1.7.6.1 
