Turning off XML-RPC in WordPress

It's a good idea to turn off XML-RPC in WordPress. It's mostly abused by botnets and irresponsible people.

Install Plugin

The easiest thing is to install a plugin called Disable XML-RPC. That's it.

Change .htaccess

The next step is to change the configuration in the .htaccess file in your web file. All you have to do is add (if it doesn't already exist) the following code to your .htaccess file.

# Block WordPress xmlrpc.php requests

<Files xmlrpc.php>
order deny,allow
deny from all

Did you find it helpful? Yes No

Send feedback
Sorry we couldn't be helpful. Help us improve this article with your feedback.