4 Nov
2019
4 Nov
'19
7:52 p.m.
On 2019-11-04 19:04+0000, Ian Hobson wrote:
There were a large number of POSTS to /xmlrpc.php
which is part of
wordpress. I thought nothing of it, until I googled it.
Seemingly xmlrpc.php is used to post remotely to your site. Curently
it is more used for DDOS attacks. The IP was from china.
So xmlrpc will be disabled on all my wordpress sites.
I've been bitten by wordpress, in a very bad way. Static site generation
is the only type of blog for me now.
--
Best regards,
Ed http://www.s5h.net/