Comments on: Auto Update Wordpress Without FTP

By: leetmachine » Blog Archive » How update Wordpress, install plugins and themes without ftp.

Wed, 01 Sep 2010 12:10:09 +0000

[...] http://robspencer.net/auto-update-wordpress-without-ftp/ [...]

By: Troubleshooting A WrodPress Install | Adonis Latham

Troubleshooting A WrodPress Install | Adonis Latham — Fri, 20 Aug 2010 19:25:27 +0000

[...] directory by chowning the directory. More detailed instructions for this process can be found here http://robspencer.net/auto-update-wordpress-without-ftp/ Share and [...]

By: Alexander

Alexander — Wed, 18 Aug 2010 20:39:52 +0000

This actually did work like a charm and the better option would be to apply these changes to the /public_html folder of the domain.

Because we use cPanel and it has its own settings for each folder it requires the root folder to be the domain owner but When we tried to do it for public_html works beautifully.

Thanks for the tip.
Alexander
[link removed]

By: McDope

McDope — Sat, 14 Aug 2010 09:43:55 +0000

Lol so easy… Thanks for the post, annoyed me since weeks

By: Rob

Rob — Fri, 07 May 2010 20:35:21 +0000

Jeremy, yes it is pretty insecure if you’re using insecure file uploads and forms or if you’re on shared hosting. I, however, haven’t used shared hosting for many years.

Robert, that is correct. You can now change the file system method to direct, ssh, ftpext, or ftpsockets. If you still prefer to use ftp then you can define your ftp details in the wp-config.php as well.

See the codex for more info

http://codex.wordpress.org/Editing_wp-config.php#FTP.2FSSH_Constants

By: Jeremy Clarke

Jeremy Clarke — Fri, 07 May 2010 17:21:55 +0000

It’s worth noting that this process makes your server almost as insecure as just chmodding them to 777. If the apache user can write to the wp directory then scripts uploaded by hackers can too. These uploaded files are how hackers get down to business so you should be afraid of any writeable dirs. Onlu the uploads dir needs to be writeable by apache.

The only secure wp install is one where auto updates and installs don’t work.

By: Robert

Robert — Fri, 02 Apr 2010 20:52:18 +0000

Hey,

there is a easier way to do this. With WP version >= 2.9.2 (or maybe even earlier) its possible to define the following in wp-config.php:
define(’FS_METHOD’,'direct’);

Regards

By: Benjamin

Benjamin — Tue, 02 Feb 2010 09:47:34 +0000

Thank you!

By: John in FL

John in FL — Sat, 28 Nov 2009 23:17:52 +0000

@nick, that is a pain in the neck. I just had this problem myself. I haven’t found a simple recursive solution yet but do a google search for “File Thingy PHP”. Just load that script to your www-root and turn on the advanced option (edit the file, give yourself a uname pass etc…)

If you are going to leave that in a public directory, might want to htaccess it. I just moved mine out when I was finished.

By: nick

nick — Fri, 27 Nov 2009 11:34:48 +0000

Hi!
I think I have same problem but I can’t login in the server as root, because of my hosting conditions. When I do uploads from wordpress panel then some files or directories are associated to a server default user called ‘apache’, and it cause troubles because I lost any control about those files and dirs.
Is there a php code solutions to chown the right owner ?