How protect WordPress from being used in DDoS atack via XML-RPC

1 Views

best what I’ve found googling around is 

add_filter( ‘xmlrpc_methods’, function( $methods ) {
   unset( $methods['pingback.ping'] );
   return $methods;
} );

Is any better solution then blocking pingback.ping?

Post Views: 1

Related posts

Leave a Reply

1 comment

  1. From Protect WordPress from DDoS attack on Pingbacks:

    They also offered two solutions for stopping your WordPress website from being used to attack others. The third one below is my suggestion.

    1. Turn off / disable notifications in your WordPress admin settings

    2. Add the following code to your functions.php file (not for novices)

      add_filter( ‘xmlrpc_methods’, function( $methods ) {
   unset( $methods['pingback.ping'] );
   return $methods;
} );