Sudden xmlrpc.php attack

  • Resolved Daniela Lao

    (@daniela-lao)


    10 years, 11 months ago

    Hi,

    I woke up this morning with a ton of visits to: http://danielalao.com/xmlrpc.php (Which doesn’t go anywhere).

    I tried blocking the countries and networks but not sure if that’s helped at all as it’s still happening…I missed a lot as I can’t keep up.

    I also have Clef for added security so no login attempts luckily.

    I don’t really know whats going on or why the sudden uptick in countries trying to access my site.

    I would also like to set something custom with my Firewall settings as they are set to unlimited, I’m just not sure what to set them.

Viewing 3 replies - 1 through 3 (of 3 total)
  • Thread Starter Daniela Lao

    (@daniela-lao)

    10 years, 11 months ago

    I just contacted my host and they had me block all countries (minus the ones I want to keep) through my .htaccess file which seems to have worked!

    Thread Starter Daniela Lao

    (@daniela-lao)

    10 years, 11 months ago

    Strike that, now I can’t access my .htaccess anymore lol.

    I still need to know if there is anything on the Wordfence side I can do to prevent sites in the US/Canada from trying to access http://danielalao.com/xmlrpc.php, which I believe could be slowing my site down.

    WFSupport

    (@wfsupport)

    10 years, 11 months ago

    We had this option to block access to xmlrpc.php for a while but found it interfered with other wordpress functions (including remote publishing) and had to remove it. You can block by IP or networks to address the attacks.

    tim

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘Sudden xmlrpc.php attack’ is closed to new replies.