How to prevent wordpress xmlrpc.php attack Ispiši članak
Xmlrpc is a type of attack in which your site goes down and if you see the error log of nginx
tailf /var/log/nginx/error.log then there will be several xmlrpc request error. here is the fix for this.
Here is the steps i used to fix this issue with Fail2ban.
# apt-get install fail2ban iptables
# cd /etc/fail2ban
# cp jail.conf jail.local
# vim jail.local
Paste and append bellow lines at the end of file
[xmlrpc] enabled = true filter = xmlrpc action = iptables[name=xmlrpc, port=http, protocol=tcp] logpath = /var/log/nginx/bantime = 43600 maxretry = 2
Save.Now Create a fail2ban filter for this.
# vim /etc/fail2ban/filter.d/xmlrpc.conf
[Definition] failregex = ^<HOST> .*POST .*xmlrpc\.php.* ignoreregex =
Save and exit
# service fail2ban restart
Je li Vam ovaj odgovor pomogao?
Using cloudflare for your website gives so many of options and flexibility for your web. Free...
A complete webserver for hosting heavy traffic php based CMS websites like wordpress, drupal etc...
Some users uses plugin for enabling next page or page break button in wordpress editor. This...
If you have opted crazytech india KVM VPS for hosting a high traffic wordpress website then we...
If we need a high traffic website host on apache due to .htaccess rules ( which is very painfull...
Powered by WHMCompleteSolution