Disabling XMLRPC completely via wp-config.php is quite easy.. I can send required info when I'm in front of a computer. You can also use an .htaccess rule for Apache to stop requests completely. I'm sure there's also rules for Nginx, lighttpd, etc that can be found quite easily via Google. Surprised most people don't have this disabled/blocked already.
— Sent from Mailbox
On Thu, Oct 2, 2014 at 11:01 AM, Chris Pemberton cjpembo@gmail.com wrote:
On 10/02/2014 09:48 AM, m.roth@5-cent.us wrote
Install fail2ban
I followed this tutorial last year; perhaps you can glean some useful info there: https://www.digitalocean.com/community/tutorials/how-to-protect-ssh-with-fai... Note: I have absolutely zero real-life experience with web security other than a single site I maintain... _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos