1) The document discusses various security measures for securing a Moodle installation including backing up data regularly, keeping software updated, using firewalls, monitoring server activity, and preparing for potential security breaches. 2) It recommends signing up for security mailing lists to stay updated on vulnerabilities and alerts, and configuring specific Moodle site security settings such as forcing login, using HTTPS, and restricting access. 3) The most secure configuration places the Moodle files and data folders outside of the web root with restricted permissions, uses SSL, and disables unnecessary services and access.