36 posts
  • Has been part of the Envato Community for over 5 years
  • Has referred 10+ members
  • Has sold $100+ on Envato Market
  • Has collected 500+ items on Envato Market
+2 more
malinerick says

Hi,

Ok Im really getting insane lately for. I own around 50 wordpress websites. (some are from clients). But the damn wordpress is keep getting updates all the damn time. Yeah sounds great, but its not! because it starts with wordpress > plugins > themes. (which 100% of the time I manually changed, so I have to go file by file)

In the past, I just didnt care, but some got targeted by hackers so not updating them is not really a solution either.

It seems its getting a daily task to keep everything updated like this. Im getting scared to go on vacation. Last time a blog which was only 2 months old, already got hacked!

Anyone know a solution to this?

3431 posts
  • Elite Author: Sold more than $75,000 on Envato Market
  • Has sold $500,000+ on Envato Market
  • Located in United States
  • Helps us moderate the forums
+10 more
sevenspark Volunteer moderator says

Depending on your exact situation, using WordPress MultiSite might greatly reduce your workload.

As for actually updating the themes and plugins that aren’t in the repository, hopefully the new plugin that Envato is developing to allow automatic updates will start to alleviate that issue as well :)

316 posts
  • Has referred 10+ members
  • Has sold $10,000+ on Envato Market
  • Has collected 10+ items on Envato Market
  • Has been part of the Envato Community for over 3 years
+2 more
SyamilMJ says

There’s no easy answer to that.

WP itself is not as secure as most people imagined, and various themes/plugins/scripts added more vulnerabilities. Keeping up with the latest hacking technique/security rules etc is also a tricky business, you seriously do not want to go down that road.

Unless you’re running a super busy site that needs to be online 100% of the time, the easiest solution, and perhaps the most practical one, is to ensure that your host keeps daily backup of the website.

Also, don’t use ‘admin’ for the username.

3072 posts
  • Has referred 50+ members
  • Has sold $40,000+ on Envato Market
  • Has collected 10+ items on Envato Market
  • Had an item featured on Envato Market
+5 more
wickedpixel says

Multisite can’t be a bigger pain? Some themes may work with certain plugin versions and wp versions… In that case you need to check all the websites when making an update – to me seems more trouble.

3431 posts
  • Elite Author: Sold more than $75,000 on Envato Market
  • Has sold $500,000+ on Envato Market
  • Located in United States
  • Helps us moderate the forums
+10 more
sevenspark Volunteer moderator says

Multisite can’t be a bigger pain? Some themes may work with certain plugin versions and wp versions… In that case you need to check all the websites when making an update – to me seems more trouble.

Like I said, depends on the situation :)

1 post
  • Has been part of the Envato Community for over 2 years
  • Has sold $10,000+ on Envato Market
  • Has collected 10+ items on Envato Market
  • Sells items exclusively on Envato Market
wpAddicts says

SyamilMJ is right.

try to use o combination of weekly backups (or daily DB only backup), and heightened security.

here are a couple of useful plugins (all are free):
  • BackWPup
  • Antivirus
  • Bulletproof Security
  • Exploit Scanner
  • Login Lockdown
  • Semisecure Login Reimagined
  • WP Security Scan

try to find out which plugin(s) work best for you.

regards, andi

93 posts
  • Elite Author: Sold more than $75,000 on Envato Market
  • Sells items exclusively on Envato Market
  • Has been part of the Envato Community for over 2 years
  • Located in Europe
+3 more
aligatorstudio says

What about this http://managewp.com/ ? Heard some great things about it but never used it myself.

316 posts
  • Has referred 10+ members
  • Has sold $10,000+ on Envato Market
  • Has collected 10+ items on Envato Market
  • Has been part of the Envato Community for over 3 years
+2 more
SyamilMJ says

SyamilMJ is right.

try to use o combination of weekly backups (or daily DB only backup), and heightened security.

here are a couple of useful plugins (all are free):
  • BackWPup
  • Antivirus
  • Bulletproof Security
  • Exploit Scanner
  • Login Lockdown
  • Semisecure Login Reimagined
  • WP Security Scan

try to find out which plugin(s) work best for you.

regards, andi

I can highly recommend Bulletproof Security & Login Lockdown if you’re looking for easy front-end security solution. I am particularly fond of Bulletproof Security, awesome plugin! :)

36 posts
  • Has been part of the Envato Community for over 5 years
  • Has referred 10+ members
  • Has sold $100+ on Envato Market
  • Has collected 500+ items on Envato Market
+2 more
malinerick says

Thanks for some suggestions, Im trying out some plugins.

Also, Im really no expert in this, so forgive me if Im talking totally non sense here. But I heard, they execute things through comment or contact forms. Anyone knows if this is true? Else I might just disallow comments and contact form on some websites.

Would that help?

by
by
by
by
by
by