If WebFX only has SFTP access and not cPanel access for completing security patches, there are important considerations and limitations:
ย WebFX requires cPanel or WHM access to fully complete security patch plans. This is because many patch tasks, including backups, plugin updates, and server-level changes, often require access beyond just SFTP.
ย For clients with only SFTP access, WebFX may rely on alternative backup methods such as the Updraft plugin installed on the client's WordPress admin. Updraft backups are used when SSH access is not available.
ย Without cPanel or SSH access, WebFX cannot perform automatic backups via their internal system (Autobot) and may need to take manual backups of site files and databases via SFTP or FTP.
ย Managed WordPress hosting or hosting plans that do not provide cPanel/WHM access are generally not suitable for WebFX security patch plans because they restrict the necessary access for patching.
ย If cPanel access is not available, WebFX may need to coordinate with the client's hosting provider or IT team to perform certain tasks that require server-level access.
ย The lack of cPanel access may limit WebFX's ability to close unused ports or manage firewall settings as part of security hardening.
ย In summary, while SFTP access allows file-level access to update plugins and themes, WebFX security patch plans ideally require cPanel or WHM access to perform full backups, server-level updates, and firewall management. Without cPanel, WebFX may have to rely on manual backups and client/host cooperation for tasks beyond file updates.
ย =============================================
Jenkins (Autobot v2) and OpFX (Autobot v1)
ย SFTP access is generally fine. Autobot v2 requires SSH access, and SFTP access tends to also allow SSH access. If not, then Autobot v1 supports Updraft/FTP backups and we configure those instead. In cases where none of this is possible then we're usually at a spot where we shouldn't even be patching their site because we have so little access. There are of course a few rare exceptions, like clients with extreme VPN restrictions where we can't reliably access their servers for backups. In cases like those I likely would have noted for you and the AM that backups weren't possible and were being skipped for that client
Comments
0 B
|๐
/๐
0 B
|๐
/๐
0 B
|0 ๐
/0 ๐
0 B
|๐
/๐
0 B
|0 ๐
/0 ๐
0 B
|0 ๐
/0 ๐
0 B
|0 ๐
/0 ๐
0 B
|๐
/๐
0 B
|0 ๐
/0 ๐