Restrict xmlrpc to JETPACK
Below fixes xmlrpc.php attacks, allowing server-wide access only to Wordpress's JETPACK.
1. Navigate to "Apache Configuration" in WHM
2. Select "Include Editor"
3. Select "Pre Virtualhost Include" and hit "All Versions"
Paste the below code into the bottom of the script editor that opens:
<FilesMatch "^(xmlrpc\.php)">
Order Deny,Allow
# Whitelist Jetpack/ Automattic CIDR IP Address Blocks
Allow from 192.0.64.0/18
Allow from 209.15.0.0/16
Allow from 66.155.0.0/17
Deny from all
</FilesMatch>
4. Restart Apache
Related Articles
Using web.config to limit access by IP address
Web.config ipSecurity The web.config file can be used to restrict website access, by the client IP address. Web.config can be used to restrict access to a single page, a directory and all sub directories, or even the entire web site. You can block ...
CMS Brute Force Protection - htaccess
Content management systems (CMS) such as Wordpress and Joomla! have become regular targets of brute force attempts. The most common way these types of attacks are performed is by hitting the wp-admin.php and administrator/index.php with thousands of ...
Moderated mailing list does not work
PROBLEM ======== Moderated mailing list does not work RESOLUTION ========== The way Parallels configured H-Sphere to use ez-mlm for mailling lists, the settings can be somewhat confusing, and the result being that while you think the list is ...
SPF Records Hsphere
What are SPF records and how they are useful -- Adding SPF records in HSphere. The Sender Policy Framework (SPF) is an email verification DNS tool that prevents email spam. It validates senders' IP addresses to counteract email forging. Mail ...
How to Set up SSH Keys
About SSH Keys SSH keys provide a more secure way of logging into a virtual private server with SSH than using a password alone. While a password can eventually be cracked with a brute force attack, SSH keys are nearly impossible to decipher by brute ...