In fact, some of the biggest Moodle security problems have impacted customers of some of the largest professional Moodle hosting providers–Moodle Partners–commercial companies endorsed and certified by Moodle to provide professional, enterprise-level services.

One example of this is the Moodle porn spam issue that impacted millions of Moodle sites all over the world–and still impacts an untold number of sites today. This issue received world-wide attention when Primary School Moodle sites, provided by a certified Moodle Partner, were found to be infested with vile pornography.

Source: Primary schools hit by porn hackers
Source: Porn infecting ‘thousands’ of e-learning (Moodle) sites

Another example is the huge security hole first reported here just a couple months ago demonstrating how any teacher on any Moodle site in the world could download the entire user database table and have access to all user information–usernames, passwords, e-mail addresses, phone numbers, etc., for every user on the Moodle site.  Professional Moodle partners all over the world got caught sleeping at the wheel…again.

Source–just one of many: Groot gat in open source e-learning cms Moodle

One would think that an open-source “community” with problems as serious as Moodle has had recently, would invite open and honest communication about its products and services, but you would be wrong.

I don’t know many things for sure, but one thing I do know is that Moodle has not seen the last of these types of problems. The closed, arrogant, intolerant, atmosphere that has been cultivated on moodle.org by the Moodle lead developer will continue to ensure that there is no shortage of people just waiting to expose the next big hole…it’s not a matter of “if” there is another big hole…it’s only a matter of “when” it will bite Moodle (ergo Moodle users) in the rear.

Related posts:

1. More Major Moodle Security Vulnerabilities Discovered Moodle, the open source learning management system, has been plagued...
2. Another “Interesting” Moodle Site Hacked I noticed a post in the moodle.org forums today that...
3. Moodle — 1990′s LMS Technology in 2010? Moodle should make my life easier, not harder. I do...

http://moodle.org/mod/forum/discuss.php?d=140152

Let me see if I understand this:

1. They build a product that for the past 9 years has been giving away virtually all personal information on every Moodle install in existence.
2. Once they are forced to address the problem and release what seems to be a broken upgrade that causes the OP in the thread above more major problems, then he’s quoted $400/hr to talk with a Moodle Partner with no guarantee of results.

…and I thought Angel was expensive…

Merry Christmas from the Moodle Business Partner “community”

PS: Just a thought…Blackboard bought Angel, but they don’t own the disciples…inside joke

Related posts:

1. Moodle Security, Censorship, and Trust — An Observation It’s no secret that Moodle, the open-source learning management system,...