Occassional 502 Gateway error with LEMP

Question

Some people are reporting that my LEMP website is giving a 502 error. I’ve seen this myself from one public wifi point. I never see it anywhere else. My logs are filled with these errors:

2016/08/16 06:59:02 [error] 3618#0: *1445992 connect() to unix:/var/run/php5-fpm.sock failed (11: Resource temporarily unavailable) while connecting to upstream, client: 158.255.5.191, server: 178.62.65.221, request: “POST /xmlrpc.php HTTP/1.1”, upstream: “fastcgi://unix:/var/run/php5-fpm.sock:”, host: “178.62.65.221”
…

…which I assume are related. Any ideas what’s going on here and how to fix it?

Answer 1

ryanpq August 23, 2016

xmlrpc.php is a script present in WordPress installations that is a target for attacks. The traffic you are seeing which is likely the cause of the 502 errors is attempts to attack your server via this method. One way to help prevent this would be to edit your nginx configuration file in /etc/nginx/sites-enabled/ to add the following section inside the server block:

 location /xmlrpc.php {
      deny all;
    }

Reply Report

Related

Question

Occassional 502 Gateway error with LEMP

Related

Leave a comment

Looking for something else?

Sign up for our newsletter

Related

Question

Occassional 502 Gateway error with LEMP

Related

Leave a comment

Related

question

init: php5-fpm main process (3586) terminated with status 78

question

Please make LEMH applications available on 14.04

question

Error log: upstream timed out (110: Connection timed out) on Nginx

question

I get download of my site after I deleted "default" in /etc/nginx/sites-available! How fix it?

Looking for something else?