What is Maintenance?
CMS MAINTENANCE
Our experience is based on maintaining many sites over the past 20+ years. Please let us know if you have any comments or questions about your CMS site and keeping it maintained.
Monthly CMS Maintenance includes: (billed separately, invoiced quarterly)
System administration
Also referred to as sysadmin, system administration includes making sure that your site is correctly and securely set up with your hosting provider and includes basic system health and performance checks.
Backup and monitoring
Keeping both local and off-site backups of your site’s database and files ensures that if anything happens, your site can be restored quickly and easily, with minimal loss of data. Monitoring includes tracking server performance and site traffic, along with proactive alerts if something prevents the site from responding—so your customers or clients aren’t the first to tell you if your site goes down.
Security and maintenance updates
The CMS web platform is constantly being updated with security patches, bug fixes, and feature additions. Keeping your site current with these updates makes it less likely for the security of your site to be compromised, and makes it easier to add in new features. These regular updates should also include testing on a separate, non-public version of your website before the live site is updated.
Not included in monthly maintenance: (billed separately, invoiced quarterly)
|
Why Should I Keep My Site Updated?
Inspired by a recent conversation with a client, along with inheriting developer ownership of a few sites that were not kept up-to-date, here is a detailed explanation on why the code that runs your CMS site should be updated and maintained.
Note that we are talking about updating your site’s contributed modules or core, which involves minor code changes (for example, updating Drupal core from 8.1 to 8.3), and not upgrading your site to the next major version. That is a whole other discussion and planning!
Benefits
There are 3 main reasons why CMS code (both CMS core and contributed modules) is updated.
Security updates
These are the “red flags” on your Available Updates report page. Security updates fix issues where a malicious user could gain access to, hijack, or outright destroy a website. You can weigh the likelihood of the possibility occurring (how trustworthy are the users, how secure and unique are their passwords, what features of the site to they have access to, etc), but it’s best to close up the holes once they’re found.
Perhaps most importantly, once a security fix has been posted, the details are shared with the wider community, to prevent others from making the same mistake in their code — but meanwhile, if you are using an older version (which can be easily figured out by checking version numbers), someone with malicious intent knows what to try to cause havoc on your site.
Bug fixes
Perhaps your users have been using something that only half works because it’s “good enough”. Or you go to check your site’s error logs and see pages and pages of PHP notices. In both cases it’s a good idea to fix those problems to help keep your site running smoothly. Any module that integrates with a third-party data source (Twitter, Facebook, etc) can stop working if the API changes, which might fix a bug that you never even noticed. We keep an eye on your logs!
Feature updates
Occasionally, a minor module release will add new functionality, or expose that functionality when the module developer and beta testers have determined it’s ready for prime time. Or, you want to add a new feature to your site, but it needs updated versions of specific modules. If you’ve been keeping your site up-to-date, it’s more likely that you already have the versions you need and can jump right into building out what you need.
Developer focus
Ok, so a fourth, bonus reason is that it gives your developer time to put eyeballs back on the site. The update/maintenance window is a good time to review server and site performance, make sure your version control workflow is still operational, and test out your backup plan. You do have a backup plan, right? YES you do!
What if I launched 6 months ago and haven’t touched my site’s code since?
Waiting that long before updating can turn the testing and deployment process into a dreaded task that gets pushed back week after week — we understand! However, with a good workflow and established testing instances, regular maintenance updates are a piece of cake! We recommend getting caught up as soon as possible, and establishing a regular maintenance schedule so that you don’t fall behind in the future.
Since CMS core has a release window every two weeks, and contributed modules generally get updated as needed, We’ve established the practice of reviewing and updating sites once per month (with security updates deployed as needed). Now you know more about our Monthly CMS Maintenance and how it protects the security and functionality of your website.
Let us know if we can help manage your CMS security and maintenance.