Updating modules and themes requires ftp access to your server eteract dating
Firstly, you will have to browse to root on your web server.$ sudo chown -R www-data:www-data /var/www Else sudo chown -R apache: apache /var/www/drupal. This command will permit apache2 permission to access the /var/www folder and write to it, change /var/www to your Apache document root or only to the certain website, for example to /var/www/drupal7/ Template files: None API Documentation: update.authorize.inc, php, update.compare.inc, update.Again, after the MYSQL login declarations in your file, add the following: In order to enable the use of SSH2 for your updates and theme uploads, you have to generate your SSH keys and have the PHP SSH module installed.Then Word Press will detect that you have SSH2 available and you'll see a different option (SSH2) displayed when doing an upload/upgrade. having an ssh account with no passphrase, (anyone who ever gets the private key can then login remotely any time they want without a password) and 2. it reminds me of rsh, depending on the idea that "nobody will have access to my local files" to protect the network password to a system. It should only be direct, ssh2, ftpext, or ftpsockets.Indication: In Drupal 5, this function is provided external of Drupal essence by the contributed Update status module.
You can take the steps to Harden Word Press with permissions, and then make these 2 changes, and you should remain mostly secure.
Best option is to chown apache:apache temporary, install your updates and chown back to original OR use the ssh/ftp trick I disagree. Any user in the machine would have write access if you set the permissions to 777. and while you are correct, that apache can alter php files now, that would be the intent in the first place (in order to update or install anything).