davecoledave

I bought your premium. I asked for help but no one is replying. 24 hours have been passed. Peremium member has to wait for a long time? By this way after installing your plugin if my site crashed then only visitor loss will be noted and no response I will get. Why your support is too slow?

I am using nginx and that may be issue.

Can you confirm whether Jetpack Protect is enabled when you have xmlrpc.php named properly with Jetpack connected? – Yes enabled.

Also, are you WordPress and Jetpack installations current? – Yes using latest version.

You’ve mentioned that this is a DDoS attack, and also that your host provides DDoS protection. If this is a DDoS attack indeed, will they address it? :

OVH is Datacenter and they told me that they did’t get any DDOS on the server, so we can not do anything at the DDOS level 4 for server.
I checked by renaming xmlrpcphp to any other name and server load is 0.5 cpu. But If I name it properly xmlrpc.php then again server load goes 235 cpu. So, it proves that its a xmlrpc attack. So, what should be the method to solve? Because I can not run my websites under attack. If I rename xmlrpc then I need to remove jetpack because jetpack won’t work without xmlrpc. So please suggest me the solution.

What do you want to know more? I already explained. If I rename xmlrpc.php to xhhddnfs.php then server load decreased 235 cpu to 0.5 cpu. It means attack does not find xmlrpc.php and attack stopped. Again If I rename it to xmlrpc.php then again server load goes 235 cpu.

But Server don’t get DDOS. OVH is fair enough to hold such kind of DDOS.
It is xmlrpc attack and I want to stop this attack.

Its ovh dedicated server. And they are known for ddos protection. They did not get any ddos. And as you are telling jetpack can block xmlrpc attack then why it is not holding? If I rename xmlrc.php then server load is normal. It means your protection is not enough. Now what will be the way to use jetpack without xmlrpc? Because if I store xmlrpc.php then my server goes down with the attack and if I remove xmlrpc then jetpack won’t work. So where to I go?

They are telling we don’t get any DDOS statics. Datacenter also confirmed that no DDOS recorded yet. Its the xmlrpc attack totally.
If I rename xmlrpc.php to any name like xhdfjds.php then server load goes down within 10 seconds 235 cpu to 0.5 cpu.
What should I do now. ??

These are xmlrpc ddos. After renaming xmlrpc.php server load goes down from 235 Cpu to 0.5 Cpu. It means this is the attack of xmlrpc. I am using jetpack free version and this attack exist. How to solve?