Manage XML-RPC

描述

You can now disable XML-RPC to avoid Brute force attack for given IPs or can even enable access for some IPs. XML-RPC on WordPress is actually an API that gives developers who build mobile apps, desktop apps and other services, the ability to talk to a WordPress site. The XML-RPC API that WordPress provides gives developers, a way to write applications (for you) that can do many of the things that you can do when logged into WordPress via the web interface.

Features

Block XML-RPC by following way.

  • Disable pingback.ping, pingback.extensions.getPingbacks and Unset X-Pingback from HTTP headers, that will block bots to access specified method.
  • Disable/Block XML-RPC for all users.
  • Enable XML-RPC based on IP list.
  • Disable XML-RPC based on IP list.

螢幕截圖

  • screenshot-1.png
  • screenshot-2.png

安裝

  1. Upload the plugin files to the /wp-content/plugins/ directory, or install the plugin through the WordPress plugins screen directly.
  2. Activate the plugin through the ‘Plugins’ screen in WordPress
  3. Use the ‘XML-RPC Settings’ screen to configure the plugin.

常見問題

Do I need to take a backup of my existing .htaccess file

Yes, it’s preferable to take a backup of existing .htaccess file.

What if .httaccess file doesn’t have writeable permission?

You can copy and paste new rule in your .htaccess file from plugin setting page.

評價

2018年5月19日
it might disable xml-rpc but it does not enable it. I have been unable to post to my wordpress, i whitelisted the ip using this plugin, it didn't help at all
2016年9月3日
simply works. I don't use jetpack and I don't care about ping backs... but I hate the staggering amount of xmlrpc attacks I've been seeing the past few months. This plugin can elegantly turn the http://your.website/xmlrpc.php URL into a 403 for the would-be attacker. Thanks!
閱讀全部4個評價

貢獻者及開發者

“Manage XML-RPC” 是一個開源的軟體。以下的人對這個外掛作出了貢獻。

貢獻者

將 Manage XML-RPC 外掛本地化為台灣繁體中文版。

對開發相關資訊感興趣?

任何人均可瀏覽程式碼、查看 SVN 存放庫,或透過 RSS 訂閱開發記錄

修改日誌

1.0

  • Beta release with basic testing.