Reputation: 1340
wordpress security and xmlrpc.php
Looking through my site stats I'm noticing a bunch of hits on my wordpress/xmlrpc.php file. It's not from me afaik, do I need to worry about something here, is there anyway to secure this?
I'm running multiple wordpress sites on the same apache2, and it's only one of them that this is happening to.
Upvotes: 0
Views: 1552
Answers (3)
Reputation: 2621
I've got also hits on this xmlrpc.php. But I'm not even on Wordpress! That's clearly hackers who try different addresses to gain access via this php page.
Upvotes: 0
Reputation: 8602
I installed "Windows Live Writer" on one of my very novice clients. It is good for posts. It is very simple and does a good job. It needs XML-RPC.
Upvotes: 0
Reputation: 2332
If you don't use the xmlrpc interface (pingbacks or blogging from external sources like android/iPhone), you can turn off this feature. Settings -> Writing -> XML-RPC
Upvotes: 2
Related Questions
- In WordPress how can I restrict access to xmlprc to specific ip/host
- Deny xmlrpc.php file but don't log the failed requests
- Issue with WordPress XMLRPC
- WARNING: File "/xmlrpc.php" is not readable - any ideas what to do here?
- Wordpress XMLRPC not working for all website
- PHP application with Wordpress XMLRPC - how to start?
- Implementing XMLRPC
- WordPress PHP Warning: parse_url(://:80/blog/xmlrpc.php)
- Wordpress XMLRPC advice needed
- How to resolve warnings when executing wordpress's xmlrpc.xml?