Why We Don’t Recommend WordPress Backup Plugins
At Pressjitsu we highly discourage the use of traditional WordPress backup plugins, mostly for performance, stability and security reasons.
Since the vast majority of backup plugins for WordPress rely on PHP to copy and compress the files and dump the database, there’s a fairly high performance impact on the server, including high server load (due to CPU utilization), a locked PHP worker for the duration of the backup, memory and I/O load. Plus the disk gets filled unless backups are sent offsite.
There are also security implications of using WordPress backup plugins – many store compressed archives of all the files and it is possible to intelligently “guess” where these files are stored and download them. Backups plugins that allow sending the data to S3 or Dropbox will inevitably contain S3 and Dropbox API credentials, which is not secure in many cases.
So how do we perform backups?
Pressjitsu does backups in a highly permanent manner using incremental backups via rsync to an offsite set of servers with redundant storage. This means that we store only the small changes that had occurred throughout the day (or between the last backup and an on-demand backup).
Since data is pulled directly from an offsite server there’s no write I/O load on the client server thus no performance degradation. And no API credentials to worry about since the client server contains absolutely no keys or API credentials to wherever the backups are stored.
So Pressjitsu built-in backups are offsite, fast, redundant, create no load on the client server, and secure. Start your free trial with Pressjitsu today.