Saturday 9 January 2016

XMLRPC Wordpress Attack

How to protect your wordpress website from xmlrpc attack

Queston: What is XMLRPC?
XML-RPC is one of the protocols that use XML for messages between two server. It is used to "Remote Procedure Calls" using XML.


Queston: Question: What is JSON-RPC?
JSON-RPC is one of the protocols that use JSON for messages between two server.
It is used to "Remote Procedure Calls" using JSON.


Queston: What is xmlrpc in wordpress?
WordPress uses an XML-RPC interface.
XML-RPC protocol is used to post entries.


Question: How to protect your website from xmlrpc attack?
Add following code in bottom of .htaccess file in root folder. 
<Files 'xmlrpc.php'>
Order Allow,Deny
deny from all
</files>



Question: How to stop abusing XML-RPC file?
Open functions.php file in your add theme and following code. 
add_filter( 'xmlrpc_methods', function( $methods ) {
         unset( $methods['pingback.ping'] );
            return $methods;
      } );



Best Related Posts are Following:

  1. Wordpress insert record into table and get last insert Id.
  2. Wordpress Interview Questions and Answers for experienced.
  3. How do I get wordpress global variable and functions in custom file [SOLVED].
  4. How to send Email in wordpress.
  5. How to change the author of a post in Wordpress.
  6. How can delete a user without deleting the post and comments in wordpress?.
  7. Wordpress redirect https to http with htaccess [SOLVED].
  8. Wordpress Website title repeated two times in browser header [SOLVED].
  9. Wordpress Interview Questions and Answers.
Labels: ,