It needs the same FTP login details that you would use to manually upload modules and themes. This information isn't exposed to PHP, as that would be an even greater security risk.
One of the most secure ways to update is via SFTP/SSH. This isn't a default option in Drupal, since a vast majority of Drupal sites run on shared hosting and a lot of those don't offer SFTP/SSH.
As far as Drush, can you elaborate on "breaks"? Breaks can mean a lot of things (WSOD, Screen full of error messages, keys flying off the keyboard and shooting at you in a Matrix bullet fashion).
Jamie Holly http://www.intoxination.net http://www.hollyit.net
On 8/19/2011 8:29 AM, Roger wrote:
When I try Drupal 7 to update a theme of module it wants the username and password of my FTP. Why? Lately if I use drush up for modules Drupal 7 breaks and has to be reinstalled.
How do I tell it the FTP of my home pc when I am using home pc?
What FTP details does it need to update themes and modules on a remote server? Mine or the secure ones for the server of some login detail for Drupal.org I see no reason to use username and passwords when it clearly states that it is a breach of security?
Anyway, is the any way to securely use the update process in Drupal 7? I haven't found a tutorial that discusses this in detail and gives precise methods to use the update tool.
Can someone help please thanks Roger