The WordPress XML-RPC API has been under attack for many years now. Back in August 2014, WordPress released version 3.9.2, fixing a possible denial of service issue in PHP’s XML processing. There are brute-force amplification attacks, reported by Sucuri, and so on. So, how do you protect WordPress from xmlrpc.php attacks, but still being able to use (some of) its functionality like Jetpack? This post gives you some insight.
Read morePosts
WordPress xmlprc.php DDoS and brute-force attacks. How to identify, block, mitigate and leverage these xmlrpc.php scans, brute-force, and user enumeration attacks on WordPress sites… Secure WordPress xmlprc.php interface and reduce service disruption.
Read more25 Most Popular Tags
Proudly hosted by
Contact
Email: no-spam-jan@saotn.nl (remove no-spam)
Also visit:
15 Most popular entry posts you might like
- List all SPNs used in your Active Directory
- Remove IIS Server version HTTP Response Header
- PowerShell return value, exit code, or ErrorLevel equivalent
- Explicit Congestion Notification (ECN) slows down outbound connections
- 5 Extra ways to clean up disk space in Windows Server
- Disk Cleanup in Windows Server
- Tunnel RDP through SSH & PuTTY
- WsusPool keeps crashing: stops again and again
- HTTP to HTTPS redirect using IIS web.config
- Fatal error: Uncaught Error: [] operator not supported for strings – PHP 7.1
- MySQL InnoDB performance improvement: InnoDB buffer pool instances – Updated!
- "The length of the URL for this request exceeds the configured maxUrlLength value"
- Fix "Could not establish trust relationship for the SSL/TLS secure channel" error
- How to install IIS URL Rewrite Module on Windows Server 2016 & IIS 10
- Set IIS Application Pool recycle defaults to Specific Times, not Regular Time Interval