5 Nov
2019
5 Nov
'19
4:11 p.m.
On 05/11/2019 12:38, Paul Tansom wrote:
** Jon Spriggs <jon(a)sprig.gs> [2019-11-04
19:51]:
Would you mind sharing the rule you use for this? As a Wordpress and
fail2ban user myself it does sound a better solution to me.
Thanks
Gavin
Rather than disabling XMLRPC, there's a
plugin called "*Disable XML-RPC
Pingback*" which might be better. XML-RPC is primarily used by Wordpress
client applications (like the Mobile App), and Jetpack (the wordpress.com
plugin pack).
** end quote [Jon Spriggs]
I have had issues with RPC and WordPress, and still get regular
probes/connections. I did have the Disable XML-RPC Pingback plugin for a while,
but I've removed it now as I have Fail2ban doing the job. It seems to be kept
quite busy, but is clearly doing its job, and has the benefit of allowing
Jetpack to function if you want to connect with that.