Block WordPress brute force attacks via xmlrpc.php

Block WordPress brute force attacks via xmlrpc.php

How to block “xmlrpc.php” hacking attempts?

You can easily disable the access to “xmlrpc.php”, via the .htaccess file
Add this to your .htaccess

# BEGIN protect xmlrpc.php
<files xmlrpc.php>
order allow,deny
deny from all
</files>
# END protect xmlrpc.php

Not only will it make your blog more secure but it will, once again, offload your server.

Was this answer helpful?

 Print this Article

Also Read

Prevent WordPress Hack

Prevent WordPress Hack by Blocking Search Engine Spiders from Indexing the Admin Section Search...

How to secure a Joomla 3 site against hacker attacks

Most Joomla attacks are a result of plugin/components vulnerabilities, weak passwords, and...

Joomla .htaccess: Option FollowSymlinks not allowed here

.htaccess: Option FollowSymlinks not allowed here Try changing that option to read...

How to secure a WordPress 3 site in .htaccess (security tips)

If you are using WordPress on Apache web-server then you can add some codes to .htaccess file to...

Brute Force Amplification Attacks Against WordPress XMLRPC

Brute Force attacks are one of the oldest and most common types of attacks that we still see on...

Powered by WHMCompleteSolution