WordPress stop xmlrpc.php attacks instantly without disabling file
Do you run a WordPress site that is under constant xmlrpc.php attacks?
A great way to stop these attacks without disabling the file (and thus disabling the functionality) is to install Wordfence plugin.
Once the plugin is installed, do the following:
- Click Wordfence.
- Click Options.
- Scroll down to “Immediately block IPs that access these URLs”.
- Enter /xmlrpc.php
Note: url must contain forward flash and .php extension.
- Click SAVE OPTIONS button.
What will this do?
Using this method will not disable xmlrpc.php, but block any IP address that tries to access this file. Often Brute Force and other attacks use multiple IP addresses over and over. This will instantly block the IP after one attempt.
To see it in action, click on the Live Traffic option under Wordfence and wait for an attempt.
Please note – I am in no way associated to the plugin and cannot provide support. Always backup your website and database before making changes.