Secure your site’s XML-RPC by removing some methods, instead of disabling totally XML-RPC, which is needed by some plugins (eg. Jetpack) and some mobile apps.
Removes the following methods from XML-RPC interface.
- X-Pingback from HTTP headers
This is not perfect, but it will help prerventing attacks
- WordPress 5.0 or higher.
- Extract the zip file and just drop the contents in the
wp-content/plugins/directory of your WordPress installation or install it directly from your dashboard and then activate the plugin from Plugins page.
- There’s not options page, simply install and activate.
Is there something to do after install?
Yes, just activate it!
I already have a security plugin, do I need this plugin too?
It depends on your security plugin. Some secure XML-RPC, some just allow you to enable or disable it, some can stop attacks as Stop XML-RPC Attacks does. So you may have to read your security plugin FAQ / doc.
기여자 & 개발자
“stop XML-RPC Attacks”(은)는 오픈 소스 소프트웨어입니다. 다음의 사람들이 이 플러그인에 기여하였습니다.기여자
- Initial release