Disable XML-RPC-API

Disable XML-RPC-API

Protect your website from xmlrpc brute-force attacks,DOS and DDOS attacks, this plugin disables the XML-RPC and trackbacks-pingbacks on your WordPress website.

Here are its features:

  • Disable access to xmlrpc.php file using .httacess file
  • Automatically change htaccess file permission to read-only (0444)
  • Disable X-pingback to minimize CPU usage
  • Disable selected methods from XML-RPC
  • Remove pingback-ping link from header
  • Disable trackbacks and pingbacks to avoid spammers and hackers
  • Rename XML-RPC slug to whatever you want
  • Black list IPs for XML-RPC
  • White list IPs for XML-RPC
  • Some options to speed-up your wordpress website
  • Disable JSON REST API
  • Hide WordPress Version
  • Disable built-in WordPress file editor
  • Disable wlw manifest
  • And some other options

Step 1: Install it

Install this plugin by navigating Plugins -> Add New within your Admin dashboard, then searching for ' Disable XML-RPC-API ', then click Install, then activate.
Alternatively you can head over here, download the plugin and then upload and extract it to your WordPress plugins folder.

  1. Upload the disable-xml-rpc directory to the /wp-content/plugins/ directory in your WordPress installation
  2. Activate the plugin through the 'Plugins' menu in WordPress
  3. XML-RPC-API is now disabled!

Step 2: Use it

Use the plugin as shown in the below screenshots:

disable-xml-rpc-api tutorial screenshot 1
disable-xml-rpc-api tutorial screenshot 2
disable-xml-rpc-api tutorial screenshot 3

Reference

Read more here.

Leave a Reply

Your email address will not be published. Required fields are marked *