Block xmlrpc.php requests from Cloudflares firewall using Custom or Rate Limiting Rule

Cloudflare Custom Rules

If you are using Cloudflare’s proxied traffic, you can block WordPress xmlrpc.php requests from Cloudflare by creating a Custom or Rate Limiting Rule for which on a free account you get one Rate Limiting Rule and 5 Custom Rules, attacks…

Block xmlrpc.php WordPress running on OpenLiteSpeed using .htaccess

Block Xmlrpc Open Litespeed

You can block the xmlrpc.php WordPress file when running on OpenLiteSpeed by adding a rewrite rule in the .htaccess file. This will reduce the brute force threat of bots making multiple resource requests. Add to your webroot .htaccess file either…

Block xmlrpc.php and wp-login.php via NGINX

Block Xmlrpc Wp Login Nginx

You can block xmlrpc.php and wp-login.php via NGINX with the configurations below, what’s good about this approach is that it prevents brute force attacks at the NGINX server level without any PHP/MySQL resources being used. xmlrpc.php for NGINX location =…