Now we can finally automatically install our automatic incremental s3 backup plugin in WordPress during provision, PERFECT!
Version 12.1.0 released
Updated via ansible across the entire estate. Took about 3 minutes, all servers running normally after update.
Thanks Enhance Team, @Aliysa_Enhance
It's clear from these additions and once again, no minor bugs fixed, that Enhance are serving the needs of other players. We're just a small bunch of insignificant (to Enhance) users here on the forum. I guess we're good for bug testing and feedback to some degree perhaps. I think this will greatly affect my desire to contribute around here, we'll see.
I still can't believe that bugs since 11.04 are not being addressed. Regressions since v12 are not being addressed. Yet point release (not a bug fix) is released without addressing anything from the "Under Development" section of the roadmap. It's great to see a release, don't get me wrong.. but this release wasn't for "us" at all.
- Edited
@Aliysa_Enhance @Adam it will be nice to see a reply to xyzulu comment, he its right, and i myself wondering when all the UI and other quality of bugs are getting fixed, and to remind for some of them its been over a year
8Dweb Nice to hear!
Do you also happen to have cPFence running?
8Dweb i would be very interrested to see how you have set up ansible, would you care to share
xyzulu I agree with you, but i think they deserve a bit of the benefit of the doubt.
Until March 12th they did v12 bugfixes (0.30 releases), and now on March 24th they did the first "new release". I think we have to wait at least until the end of April to judge their words and their sincerity, since they have repeatedly specified that the big bottleneck was v12. Now that it is out and we are finally at the point releases, let's see if the updates will actually be more frequent and more useful (with bug fixes too). It's only been 12 days and I agree with you that this update is rather sterile, but it's only been 12 days and I think this was probably already planned.
Let's give them 1 or 2 months and see if things will actually go smoother, otherwise than your words will be correct.
SolidNetwork Yes, we currently utilize cpfence on our cluster servers. We used cpguard for the first year, and then switched to cpfence. Their tool suits our needs better at this time. It also helps de-duplicate and centralize a lot of WP hardening.
Ansible Example to Update Enhance Servers on Ubuntu 24.04:
https://github.com/8dcloud/Enhance_Scripts/tree/main/ansible_example
We have used this since May of 2024 without issues. If you do not want servers to be rebooted, a small change to the script as it stands will be necessary.
8Dweb Thanks !
Andrea
8Dweb Thanks for posting this! I have a very similar playbook that I use to update the cluster.
Do you have any other playbooks that can help with Enhance system administration?
- Edited
xyzulu
I agree with you, and I posted this back in November of 2024:
[...] I first trialled Enhance in Nov 2022 and have been holding off deploying it properly in production ever since whilst wating for:
- Duplicating the control panel
- Easily backing up the control panel
- Adjustable spam filters/rules (at the very least adding an RBL to rspamd without editing the container)
- Functioning forwarders (which I believe has now been implemented)
- Better firewall rules and management
- The ability to set a default TTL
- Brute force protections for most services
- Proper mail rate limiting
Enhance is great, and I love where it's going – but in almost 2 years I think only 2 of the above have been fully implemented?
[...]
So it looks like in 2.5 years a total of 3 (please do correct me if I'm wrong) of the features on my list made it into Enhance so far?
- Edited
hwcltjn number 6 would take like an hour to add. But big players don't need it so it's not important.
If our feedback don't matter that's fine...remove feature requests. Don't pretend like our voices get heard lol. Enhance team can't even consistently reply here. If they spent a week getting a few things fixed and added, the product would be better but quarterly profits are more important I guess.
PR cookie cutter response incoming about how proud of the community enhance is and how our opinion matters
hwcltjn
1 and 2, since v12 it's possible to migrate your control panel. I've written a script to backup your control panel to a remote location here: https://gist.github.com/xyzulu/e04868d28baea53d7097098aac967098
Personally we do not run any email via Enhance.
JohnB PR cookie cutter response incoming about how proud of the community enhance is and how our opinion matters
I don't think we'll even get that. I hope I'm wrong.
lets see how things progress next month8Dweb Thanks for sharing.. this is useful. However, I am a firm believer in not using root. I have a Ansible config way to use a sudo user instead. I'll share it when I get time (possibly.. though I am not even sure where/how to share stuff like this now.. it just gets lost here or becomes useless since you can't edit your post).
Ansible is not just neat for doing updates, but you can run scripts simultaneously across multiple server or even manual commands. While it looks complicated, it's not really. It is only installed one one server and then all interactions with the servers takes place via ssh.
xyzulu I get that to some degree, however the ansible control server can easily be firewall and never allowed to see the lite of day.
As with anything, feel free to disagree on method. I have found that for pure updates, root access via only ssh key works well. No doubt I will be flogged and yelled at by the community.. 
