Update Questions | WordPress.org

gnosis_wp
(@gnosis_wordpress)

5 years, 7 months ago
Question:
Because we do not want Apache to have (group) ownership on files, because of security concerns, we do not want to run updates through the dashboard. Currently running wp_cli updates with daily cron jobs, which runs the routines with my username assuming I own the files, rather than Apache so more secure.

However, I am curious about background updates using =>’define( ‘WP_AUTO_UPDATE_CORE’, true );’ Does that use Apache or the credentials thrown in:
```
define('FTP_USER','');
define('FTP_PASS','!');
define('FTP_HOST',':22');
define('FS_METHOD', '');
define('FTP_BASE', '');
define('FTP_CONTENT_DIR', '');
define('FTP_PLUGIN_DIR ', '/');
```
And what is the purpose of this section of the wp-config?

The essential questions are:
Does ’define( ‘WP_AUTO_UPDATE_CORE’, true );’ simulate dashboard updates and require Apache user access or can I use my username?
if background updates using ’define( ‘WP_AUTO_UPDATE_CORE’, true );’ using my username (rather than Apache) is preferable to daily cron jobs using wp_cli?

FYI:

Configuring Automatic Background Updates

Updating WordPress

Editing wp-config.php

Viewing 2 replies - 1 through 2 (of 2 total)

Thread Starter gnosis_wp
(@gnosis_wordpress)

5 years, 7 months ago

This:
https://digwp.com/2011/04/wordpress-auto-updates/
suggests that FTP Variables in wp-config.php DO NOT need to be Apache user.

True?

Thread Starter gnosis_wp
(@gnosis_wordpress)

5 years, 7 months ago

https://digwp.com/2010/11/ftp-in-wpconfig/

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Update Questions’ is closed to new replies.

Tags

Updates

In: Fixing WordPress
2 replies
1 participant
Last reply from: gnosis_wp
Last activity: 5 years, 7 months ago
Status: not resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics