By han474838
Hi I’m running a Centos droplet with Directadmin an CSF that hosts a few wordpress installs. But one of these keeps getting hammered with xmlrpc attacks that almost bring the droplet to a halt.
I read somewhere that you can create custom regex for configserver firewall.
I there anyone that can help me by explaining how the write the correct script to mitigate these attacks using CSF?
thanks Han
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
Take a look at this entry on wordpress.org > support forums https://wordpress.org/support/topic/how-to-prevent-denial-of-service-attacks-against-xmlrpcphp
Try adding the following to the .htaccess file in your root directory:
<Files “xmlrpc.php”> Order Allow,Deny deny from all </Files>
Become a contributor for community
Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.
DigitalOcean Documentation
Full documentation for every DigitalOcean product.
Resources for startups and SMBs
The Wave has everything you need to know about building a business, from raising funding to marketing your product.
The developer cloud
Scale up as you grow — whether you're running one virtual machine or ten thousand.
Get started for free
Sign up and get $200 in credit for your first 60 days with DigitalOcean.*
*This promotional offer applies to new accounts only.