Blocking XMLRPC.PHP issue.

  • Resolved divernzon

    (@divernzon)


    6 years, 2 months ago

    Hi,

    We are wondering if your plugin uses XMLRPC.PHP ? I ask because we have been advised to block this in our .htaccess file with this code:

    <Files xmlrpc.php>
    order deny,allow
    deny from all
    </Files>

    …..If we do this, will it cause any issues with your plugin? We have been advised that this is a good thing to do for security.

    Regards,
    Harold

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Contributor Marko Vasiljevic

    (@vmarko)

    Hello,
    Is that piece of the code anywhere between:# BEGIN W3TC and # END W3TC?

    Thread Starter divernzon

    (@divernzon)

    Hi Marko,

    Yes it is.

    Regards,
    Harold

    Plugin Contributor Marko Vasiljevic

    (@vmarko)

    Hello,

    W3 Total Cache doesn’t generate that rule so it shouldn’t be anywhere between # BEGIN W3TC and # END W3TC
    As the plugin doesn’t use xmlrpc.php any changes you make will not impact the performance of the plugin.
    But please share your .htaccess so we can confirm that the mentioned rule is not generated by W3 Total Cache.

    Just a word of advice, if you use Zapier to automate your WordPress posts, donot block XMLRPC as blocking would result in 403 unauthorised access for Zapier when trying to authenticate with your website.

    • This reply was modified 6 years, 2 months ago by moisture9063.
Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Blocking XMLRPC.PHP issue.’ is closed to new replies.