0

I am experiencing an XMLRPC Brute Force attack on my website that has been going for about 28 hours now. Every few seconds, 188.0.236.9 tries to plug a user-pass combination into my XMLRPC.php file. I conducted a whois on the ip, which didn't help much. The phone number listed was invalid (yes, I was stupid enough to call).

Anyway, I've blocked the IP itself (it is a single IP) as well as the entire IP range, with WordFence. I don't have access to my .htaccess file right now; I'm not at home.

enter image description here

Is my website adequately protected, or is this person's attack still capable of doing anything? He's still sending requests as we speak, and though I've blocked him, I can't tell if he's still getting through.

Forgive me; I'm still relatively new to all this. If my site is not adequately protected, what more can I do without access to my .htaccess file?

ib11
  • 2,530
  • 3
  • 22
  • 55
HaveSomeSyntax
  • 43
  • 1
  • 4
  • Possible duplicate of [wordpress security and xmlrpc.php](http://stackoverflow.com/questions/5622106/wordpress-security-and-xmlrpc-php) – edhurtig May 28 '16 at 01:56
  • @edhurtig The feature which solved that person's problem has been removed in the most recent version of WP. – HaveSomeSyntax May 28 '16 at 01:58
  • Then that accepted answer should be updated... – edhurtig May 28 '16 at 02:00
  • You should consider A) Disabling the XMLRPC api if you are not using it for anything. I updated the above linked answer and hopefully those edits will be accepted soon. B) or using a service like CloudFlare to prevent attacks like this C) Install BruteProtect (the folks that invented it at Parka are great) (Now bundled with JetPack and known as the "Protect" module). (This is what I use and it works great). – edhurtig May 28 '16 at 02:12
  • @edhurtig Thanks so much for your help. I will look into all of these things. I really appreciate it. – HaveSomeSyntax May 28 '16 at 02:14
  • You may want to check this post on WordPress Stack Exchange [What is a best way to eliminate xmlrpc.php file from WordPress when you don't need it?](https://wordpress.stackexchange.com/a/219666/105480) – nyedidikeke Sep 15 '19 at 16:57

0 Answers0