High CPU Usage on wordpress websites

Due to a security issue in earlier versions of WordPress that allowed posting from xmlrpc.php, bots scan remote servers for the vulnerability which can cause high loads.

 
You can enter the following code to your .htaccess file which will block access to that file and keep them bots from wasting your accounts resources:

<Files "xmlrpc.php">
Order Allow,Deny
deny from all
</Files>


or add the following line in your .htaccess file

RewriteRule ^xmlrpc\.php$ "http\:\/\/0\.0\.0\.0\/" [R=301,L]


If you dont use an .htaccess file, please create a file named .htaccess and add the following content in it.

<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^xmlrpc\.php$ "http\:\/\/0\.0\.0\.0\/" [R=301,L]
</IfModule>

 

  • 1 Users Found This Useful
Was this answer helpful?

Related Articles

How to disable Error Reporting in Wordpress

You need to edit your: wp-config.php file and modify the following here:...

Bots hitting xmlrpc.php and causing a high load

Due to a security issue in earlier versions of WordPress that allowed posting from xmlrpc.php,...

How to block Brute Force attacks in wordpress wp-login.php

WordPress Admin login bruteforce protection, limit by referer You can protect your WordPress...