Security is a top priority to us at WPX Hosting, and as WordPress specialists, protecting your WP websites is our passion.
WPX Hosting is a Managed WordPress hosting company, this means that the lion’s share of technical work and maintenance is done by us, so you don’t have to. As a standard, your WordPress website updates regularly for greater security.
What should I do if I’ve disabled Updates?
If you have chosen to disable our automatic WordPress updates, then regularly updating WordPress installations (core, themes,
and plugins) yourself is crucial to keeping your website secure.
We strongly recommend that you follow each of these steps:
Checking one website frequently can be a tedious task, keeping track of multiple websites is downright annoying.
To promote better security, and to streamline the updating process overall, automatic background updates were introduced in WordPress 3.7. Normally, only minor releases – such as maintenance and security – and translation file updates are enabled by default.
In special cases, plugins and themes may also be updated, though this mainly applies to premium themes and plugins, which may have
automatic update functions enabled as standard.
How do Automatic Updates work?
Automatic updates mean that, if you had WordPress 3.7.0 and version 3.7.1 was released, your WP website would update itself automatically. Conversely, if WordPress 3.8 was released (a major version), you would have to update to it manually.
In WordPress, automatic background updates are divided into four types:
Core updates are subdivided into three types:
Every WP website on WPX has automatic updates enabled by default for minor core releases and translation files.
What if I want to control my Updates?
For beginners, we recommend the Easy Updates Manager plugin. It is a lightweight yet powerful plugin which enables you to manage all types of updates on one website install or in WordPress Multisite.
Easy Updates Manager grants you a great amount of control and oversight over your WordPress updates.
Note: If you are not interested in coding and wp-config.php files, please skip to the end of this article!
If I’m a technical person, how else can I control my Updates?
For those of you who are not afraid of editing the wp-config.php file of their websites, there are multiple ways to enable/disable different parts of the auto-update system of WordPress.
To access the wp-config.php file, you must go to your File Manager, located in your hosting Dashboard. To find our more about your File Manager, click here.
Important: To completely disable all types of automatic updates, core or otherwise, add the following code to your wp-config.php file, above the Authentication Unique Keys and Salts (as seen in the screenshot below):
define( 'AUTOMATIC_UPDATER_DISABLED', true );
You can also control the WordPress auto-update system with WP_AUTO_UPDATE_CORE;
define( 'WP_AUTO_UPDATE_CORE', false );
define( 'WP_AUTO_UPDATE_CORE', true );
define( 'WP_AUTO_UPDATE_CORE', minor );
Configuration constants allow you to enable or disable auto-updates however, deeper control over updates is not possible.
You can make changes to auto-updates with 'filters' (the following code must be added on the bottom of wp-config.php on a new row, below: require_once(ABSPATH . 'wp-settings.php'); :
In short, we recommend keeping Automatic Updates enabled to maintain your website's security and let us do the work for you. If you wish to control your site’s updates yourself, that’s perfectly fine too.
If you have any questions or need help adding any of these commands to your wp-config.php file, please contact our Support Team via LiveChat, via email (firstname.lastname@example.org), or reach out to us via a Support Ticket here:
and we'll answer ASAP.