Disabling XMLRPC completely via wp-config.php is quite easy.. I can send required info when I'm in front of a computer. You can also use an .htaccess rule for Apache to stop requests completely. I'm sure there's also rules for Nginx, lighttpd, etc that can be found quite easily via Google. Surprised most people don't have this disabled/blocked already.
—
Sent from Mailbox
On Thu, Oct 2, 2014 at 11:01 AM, Chris Pemberton <cjpembo@xxxxxxxxx>
wrote:
> On 10/02/2014 09:48 AM, m.roth@xxxxxxxxx wrote
>> Install fail2ban
> I followed this tutorial last year; perhaps you can glean some useful
> info there:
> https://www.digitalocean.com/community/tutorials/how-to-protect-ssh-with-fail2ban-on-centos-6
> Note: I have absolutely zero real-life experience with web security
> other than a single site I maintain...
> _______________________________________________
> CentOS mailing list
> CentOS@xxxxxxxxxx
> http://lists.centos.org/mailman/listinfo/centos
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
