Disable XML-RPC Pingback

Samuel Aguilera Free   Connect to feed
Stops abuse of your site's Pingback method from XML-RPC by simply removing it. While you can use the rest of XML-RPC methods.

Stops abuse of your site's XML-RPC by simply removing some methods used by attackers. While you can use the rest of XML-RPC methods.

This is more friendly than disabling totally XML-RPC, that it's needed by some plugins and apps (I.e. Mobile apps or some Jetpack's modules).

Features

Removes the following methods from XML-RPC interface.

  • pingback.ping
  • pingback.extensions.getPingbacks
  • X-Pingback from HTTP headers. This will hopefully stops some bots from trying to hit your xmlrpc.php file.

Requirements

  • WordPress 3.8.1 or higher.

1.2.1

  • Minor changes to make code 100% compliant with WordPress Coding Standards.

1.2

  • Added support for X-Pingback header removal in recent versions of WP.

1.1

1.0

  • Initial release.

Tags

Xml Rpc Xml Rpc Pingback Ddos Firewall

More information

disable-xml-rpc-pingback
1.2.1
9/5/2020
licenses.nuget.org/GPL-2.0-or-later

Share