Note: You are currently viewing documentation for Moodle 2.2. Up-to-date documentation for the latest stable version is available here: Risks.

Risks: Difference between revisions

From MoodleDocs
(re-wording)
(risks for predefined roles, see also)
Line 8: Line 8:


==XSS (Cross-Site Scripting)==
==XSS (Cross-Site Scripting)==
Users could add files and texts that allow cross-site scripting.
Certain capabilities enable users to add non-checked files and HTML code containing JavaScript etc.. This may be misused for cross-site scripting (XSS) purposes, with the potential to gain full admin access. These capabilities are intended for administrators and teachers only.


==Privacy==
==Privacy==
Line 14: Line 14:


==Spam==
==Spam==
Certain capabilities enable users to add content to site, for example forum posts, and send messages to other users. These capabilities may be misused for spamming purposes. The role of Guest should have none of these capabilities set.
Certain capabilities enable users to add content to site, for example forum posts, and send messages to other users. These capabilities may be misused for spamming purposes.
 
==Risks for predefined roles==
 
* Guest - only capabilities without any risks are allowed
* Student - certain capabilities with spam risks are allowed
* Teacher - certain capabilities with XSS and privacy risks are allowed
* Administrator - all capabilities are allowed
 
==See also==
 
* [[Development:Hardening new Roles system]]
* [[Capabilities/moodle/site:trustcontent]]


[[Category:Administrator]]
[[Category:Administrator]]

Revision as of 13:23, 10 May 2007


Careful consideration should be given to the risks involved in allowing different capabilities.


Configuration

Certain capabilities, such as moodle/site:doanything are intended for administrators only, as they enable users to change the site configuration and behaviour.

XSS (Cross-Site Scripting)

Certain capabilities enable users to add non-checked files and HTML code containing JavaScript etc.. This may be misused for cross-site scripting (XSS) purposes, with the potential to gain full admin access. These capabilities are intended for administrators and teachers only.

Privacy

Certain capabilities enable users to gain access to private information of other users, for example non-public information in a user's profile. These capabilities are intended for administrators and teachers only.

Spam

Certain capabilities enable users to add content to site, for example forum posts, and send messages to other users. These capabilities may be misused for spamming purposes.

Risks for predefined roles

  • Guest - only capabilities without any risks are allowed
  • Student - certain capabilities with spam risks are allowed
  • Teacher - certain capabilities with XSS and privacy risks are allowed
  • Administrator - all capabilities are allowed

See also