Tag Archive for: wordpres

Mencegah DDOS xmlrpc dan pingback

Dalam banyak kasus wordpress seringkali mengalami overload disebabkan karena adanya serangan DDOS atau percobaan Brute Force pada salah satu modulnya xmlrpc.php, pada kebanyakan pengguna fungsi/fitur ini tidak diperlukan kecuali jika ingin menggunakan aplikasi WordPress Mobile Blogger.

Jika anda mencurigai wordpress anda mengalami overload, anda dapat menanyakannya pada support kami, atau jika memang tidak membutuhkan fitur tersebut dapat langsung menambahkan syntax berikut ini pada file .htaccess yang sudah ada di hosting wordpress anda:

############################################
# Jetpack XML-RPC DDoS PROTECTION
# You can whitelist your IP address if you use A Weblog Client
# or want to whitelist an IP address for any other reasons.
# Example: Add this line of code RewriteCond %{REMOTE_ADDR} ^(xxx\.xxx\.xxx\.xxx) [OR]
# inbetween the first and second lines of code below. Then replace the x's with the
# actual IP address you want to whitelist.
# Note: It is recommended that you use 3 octets x.x.x. of your IP address
# instead of 4 octets x.x.x.x of your IP address.
# Example: RewriteCond %{REMOTE_ADDR} ^(xxx\.xxx\.xxx\.) [OR]
RewriteCond %{REQUEST_URI} ^(xmlrpc\.php)$
RewriteCond %{HTTP_USER_AGENT} !^(.*Jetpack.*)$
RewriteRule ^(.*)$ - [F]

# Jetpack XML-RPC DDoS & TRACKBACK/PINGBACK PROTECTION
# You can whitelist your IP address if you use A Weblog Client
# or want to whitelist an IP address for any other reasons.
# Example: Add this line of code RewriteCond %{REMOTE_ADDR} ^(xxx\.xxx\.xxx\.xxx) [OR]
# inbetween the first and second lines of code below. Then replace the x's with the
# actual IP address you want to whitelist.
# Note: It is recommended that you use 3 octets x.x.x. of your IP address
# instead of 4 octets x.x.x.x of your IP address.
# Example: RewriteCond %{REMOTE_ADDR} ^(xxx\.xxx\.xxx\.) [OR]
RewriteCond %{REQUEST_URI} ^(xmlrpc\.php|wp-trackback\.php)$
RewriteCond %{HTTP_USER_AGENT} !^(.*Jetpack.*)$
RewriteRule ^(.*)$ - [F]
############################################

Jika anda mengalami kesulitan menambahkan syntax ini silakan hubungi kami melalui Live Chat atau Tiket Support untuk bantuan lebih lanjut.