وەسف
Stop XML-RPC Attacks protects your WordPress site from XML-RPC brute force attacks, DDoS attempts, and reconnaissance probes while maintaining compatibility with essential services like Jetpack and WooCommerce.
Features:
- Three security modes: Full Disable, Guest Disable, or Selective Blocking
- Blocks dangerous methods: system.multicall, pingback.ping, and more
- Compatible with Jetpack and WooCommerce
- Optional user enumeration blocking
- Attack logging for monitoring
- Zero configuration required – works out of the box
- Clean, intuitive admin interface
Installation
- Upload the plugin files to
/wp-content/plugins/stop-xmlrpc-attacks/ - Activate the plugin through the ‘Plugins’ menu in WordPress
- Go to Settings > XML-RPC Security to configure (optional)
پهد
-
Will this break Jetpack?
-
No! The default “Selective Blocking” mode is fully compatible with Jetpack and WooCommerce.
-
What’s the difference between the security modes?
-
- Full Disable: Maximum security, disables XML-RPC completely
- Guest Disable: Balanced approach, only allows XML-RPC for logged-in users
- Selective Blocking: Best compatibility, only blocks dangerous methods
-
How do I enable logging?
-
Go to Settings > XML-RPC Security and check “Enable Attack Logging”. Logs will be written to your debug.log file when WP_DEBUG is enabled.
پێداچوونەوەکان
بەشداربووان و گەشەپێدەران
“Stop XML-RPC Attacks” نەرمەواڵەیەکی سەرچاوە کراوەیە. ئەم کەسانەی خوارەوە بەشدارییان تێدا کردووە.
بەشداربووان
“Stop XML-RPC Attacks” وەرگێڕدراوە بۆ 2 زمان. سوپاسی وەرگێڕەکان دەکەین بۆ بەشداریکردنیان.
“Stop XML-RPC Attacks” وەربگێڕە بۆ زمانەکەی خۆت.
دەتەوێت بەشداربیت لە گەشەپێدان؟
گەڕان لە کۆدەکەدا بکە، سەیری تەمارگەی (SVN) بکە، یان بەشداربە لە ڕووداوتۆماری گەشەپێدان لە ڕێگەی (RSS).
Changelog
2.0.0
- Added admin interface with visual settings
- Three security modes to choose from
- Optional attack logging
- Improved code quality and security
- Full internationalization support
1.0.1
- Initial release
- Basic blocking of dangerous methods