Xmlrpc problem or it’s all good? cry for help

  • Dgold

    (@dgold)


    17 years, 7 months ago

    Hello, I tried to search for the answer but there were many search results and most of them appeared old. I’m worried my site could be getting attacked.

    Problem: In my server logs I suddenly noticed a file called xmlrpc.php getting a lot of hits that I never saw in my logs before. I have 2 wordpress blogs in different folders, and both of them have xmlrpc.php files getting hits hundreds of hits this week. What is this file? (I think it has to do with pinging, which I do use with my podcast pinging Itunes thru Podpress plugin) Is there an exploit of it under WP 2.03? Do these hits mean that I am being attacked/compromised? If I delete the xmlrpc, what features will I lose? ANY HELP PLEASE!

    Status: I haven’t had time to upgrade to 2.04 yet, please let me know if that would fix this. I know I need to do it asap.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Austin Matzko

    (@filosofo)

    17 years, 7 months ago

    I have 2 wordpress blogs in different folders, and both of them have xmlrpc.php files getting hits hundreds of hits this week. What is this file?

    The xmlrpc.php file is used for posting to your blog using an XML-RPC client.

    For example, if you are a digg.com user, you can post a story directly to your blog through digg.com, which uses the xmlrpc.php file. If you use the Flock browser, you can edit and save blog posts in it, then post directly to your WordPress blog without having to log into your WP site, using the xmlrpc.php file.

    So, if you’re not posting to your blogs remotely, you probably don’t need the file. Try renaming it (say to _xmlrpc.php or whatever), and maybe you’ll stop getting those hits.

    Thread Starter Dgold

    (@dgold)

    17 years, 7 months ago

    Thank you for the reply and explanation. I changed the filename, per your suggestion.

    I don’t see any spam-posts on my blogs, and my spam-catchers are still catching all comment spam. So I guess these hits were something trying, but not succeeding? Hopefully.

    My logs should stay paused at:
    rad/xmlrpc.php 89 hits in september
    home/xmlrpc.php 219 hits

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Xmlrpc problem or it’s all good? cry for help’ is closed to new replies.

Tags