The article was last updated on August 19th 2016.
Data security is one of the most important issues nowadays. Thousands of websites are hacked and blacklisted every day, losing their data, reputation and search ranking. In addition to the reputation damage, hacking causes financial harm, emotional distress and clients’ confidence loss. That is why so much attention is paid to the system security and reliability.
One of the purposes for buying LMS is storage and exchange of confidential information. Companies use eLearning software to inform employees about company’s policy, products and services, organizational structure and strategic plans, the leak of which can undermine company’s authority, lead to breach or data loss of a system. That is why together with such fundamental features as LMS flexibility, integration capability, easy tracking, reporting and usability, equal attention should be paid to LMS security.Is JoomlaLMS secure?
Joomla LMS is Joomla! CMS-centered eLearning software. Joomla developers are paying a lot of attention to security vulnerabilities and it makes Joomla! CMS one of the most secure open-source CMS systems. Joomla! security applies to JoomlaLMS and thus makes the software completely secure for keeping confidential data. But still it wouldn’t be a bad idea to take some additional protective measures.
- User Management configuration
JoomlaLMS provides possibilities to set up users’ roles, activities they are allowed to perform and data they can see or work with. Thus, you protect the confidential information from low level access users and recuse the risk of compromising the data security by hackers.
- Data protection
All the files that are uploaded to JoomlaLMS “Documents” section are completely safe and cannot be downloaded by direct link. Even a registered user cannot access the file if he is not granted respective permission. In addition Professional JoomlaLMS version allows setting custom permissions for different folders in the Documents section. This ensures data security inside JoomlaLMS.
- Password management
One of the most common hacking reasons – weak passwords that are easy to guess. And the problems spreads further than just using logins like “admin” or passwords like “qwerty”. The researches on security show that most of users’ passwords or security questions they need to answer resuming the passwords are publically available on their social profiles and are easy to spot.
To prevent your Joomla!-based LMS from hacking:
- Change Joomla! “admin” password regularly;
- Advise JoomlaLMS users to change their passwords on their first login;
- Set a limit on the number of failed login attempts;
- Don’t allow reusing old passwords;
- Enable an automated notification to be sent when a password is changed;
- Don’t allow password sharing.
- Follow JoomlaLMS System requirements
JoomlaLMS requires PHP 5.6 or 7.0 + and Ioncube loader in order to run. The measures are necessary to avoid any security breaches in future.
- Follow Joomla! Security Recommendations
Joomla! Community devotes a lot of time to public awareness on Joomla! websites security by recommending special reading, developing Security Guides and answering Joomla! Security Questions on forums. Constant updates and website backups, reliable extensions and hosting provider usage, installing Joomla! Security Extensions, getting rid of unused ones & etc. All you need to know is available here
The above mentioned tips will not prevent you from all the unforeseen circumstances but will help you to protect your data from leaking and your company from financial losses. By taking those steps you secure your LMS users!
What to read next?
JoomlaLMS Workaround: How to Display Courses of a Certain Category?
How to Organize Work and Study of Independent User Groups in JoomlaLMS?
JoomlaLMS Workaround: How to Circumvent Self-Enrollment in Publicly Offered Courses