FAIR

Federated and Independent Repositories

Manage XML-RPC

Plugin Banner

Manage XML-RPC

by brainvireinfo

Download
Description

You can now disable XML-RPC to avoid Brute force attack for given IPs or can even enable access for some IPs. XML-RPC on WordPress is actually an API that gives developers who build mobile apps, desktop apps and other services, the ability to talk to a WordPress site. The XML-RPC API that WordPress provides gives developers, a way to write applications (for you) that can do many of the things that you can do when logged into WordPress via the web interface.

Features

Block XML-RPC by following way.

  • Disable pingback.ping, pingback.extensions.getPingbacks and Unset X-Pingback from HTTP headers, that will block bots to access specified method.
  • Disable/Block XML-RPC for all users.
  1. Upload the plugin files to the /wp-content/plugins/ directory, or install the plugin through the WordPress plugins screen directly.
  2. Activate the plugin through the ‘Plugins’ screen in WordPress
  3. Use the ‘XML-RPC Settings’ screen to configure the plugin.
  1. screenshot-1.png

    screenshot-1.png

Do I need to take a backup of my existing .htaccess file

Yes, it’s preferable to take a backup of existing .htaccess file.

What if .httaccess file doesn’t have writeable permission?

You can copy and paste new rule in your .htaccess file from plugin setting page.

My backend down after activating this plugin

By pharouk on January 18, 2023

After directly activating this plugin, the backend is no longer available and can't deactivate it or access the backend again

This error appears

Service UnavailableThe server is temporarily unable to service your request due to maintenance downtime or capacity problems. Please try again later.

does not enable xml rpc at all.

By shop4seo on May 19, 2018

it might disable xml-rpc but it does not enable it. I have been unable to post to my wordpress, i whitelisted the ip using this plugin, it didn't help at all

easy modifiable xml-rpc setting

By . (lutjebroeker) on October 8, 2016

Easy in use! Works great!! Block entirely the access, block only pingback or/and allow/denay by IP

effectively stops xmlrpc brute force / dos

By mtreklivecom on September 3, 2016

simply works. I don't use jetpack and I don't care about ping backs... but I hate the staggering amount of xmlrpc attacks I've been seeing the past few months. This plugin can elegantly turn the http://your.website/xmlrpc.php URL into a 403 for the would-be attacker.

Thanks!

1.0.2

  1. Fixed bugs and conducted compatibility checks with the latest WordPress version 6.7.1.
  2. Resolved warnings and errors identified during the compatibility assessment.

1.0.1

  • Beta release with basic testing.
Back to top