WordPress.org

Ready to get started?Download WordPress

Plugin Directory

Remove XMLRPC Pingback Ping

Prevent your WordPress install from participating in pingback denial of service attacks.

Prevent your WordPress install from participating in pingback denial of service attacks.

From sucuri.net:

Any WordPress site with Pingback enabled (which is on by default) can be used in DDOS attacks against other sites.

Read the FooPlugin's post Beware : Your Site Is Part of a WordPress Pingback DDoS Botnet

Learn More

Is Your Site Attacking Others?

Use Sucuri's WordPress DDOS Scanner to check if your site is DDOS’ing other websites

Why Not Just Disable XMLRPC Altogether?

Yes, you can choose to do that using the plugin Disable XML-RPC, but if you use popular plugins like JetPack (that use XMLRPC) then those plugins will stop working 100%. That is why this small plugin exists.

How To Test Your Site?

Follow the steps in the GitHub repo

Disclaimer

I did not write this code. I just put it together in a plugin so more people can easily install and use it. Original code from wptavern.com and sucuri.net in the links above.

Tags:

Requires: 3.5.1 or higher
Compatible up to: 3.9.1
Last Updated: 2014-3-18
Downloads: 1,883

Ratings

5 stars
5 out of 5 stars

Support

0 of 1 support threads in the last two months have been resolved.

Got something to say? Need help?

Compatibility

+
=
Not enough data

0 people say it works.
4 people say it's broken.

100,1,1
0,4,0