[wp-trac] [WordPress Trac] #30245: Background updates should work with Group/World Writable
WordPress Trac
noreply at wordpress.org
Tue Nov 4 02:34:24 UTC 2014
#30245: Background updates should work with Group/World Writable
-----------------------------+-------------------
Reporter: dd32 | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone: 4.1
Component: Upgrade/Install | Version: trunk
Severity: normal | Keywords:
Focuses: |
-----------------------------+-------------------
At present we apply a strict owner check to created files before using the
'direct' file operations (ie. not FTP) for updates, this is due to many
hosts FTP access not allowing access to non-owned files.
Background Updates, by design, do not create new files (at least in-branch
core updates & translations), and only alter existing WordPress files. As
a result of this, we can relax the strict checks for these updates,
allowing security releases to be installed automatically in more cases.
The 1.7 version-check API returns a flag on autoupdate responses
`new_files` which specifies if the update from the current version to that
package will mean new files (ie. 3.9 -> 4.0.1 is true, yet 4.0 -> 4.0.1 is
false), we can leverage that flag to enable group-writable.
Please keep this ticket on track and lets not debate Group/World Writable
for plugins/themes/others here, that's been done over in #10205 & #8794
--
Ticket URL: <https://core.trac.wordpress.org/ticket/30245>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list