realone
Forum Replies Created
-
Thank you for your help, I will give it a go and see if I can break the contract with my hosting provider because of this.
If you can circumvent their security measures by moving the file to a different location, hackers shouldn’t have any issues doing the same. In general, Security through obscurity is not considered a safe way to protect your site. At this point, it might be safer to move to a different hosting provider that has better security measures, and allows you to use features like XML-RPC while protecting you against brute force attacks. Most of the biggest hosting providers will protect you against these types of attacks.
I couldn’t agree more on the security aspect. However, I still have a 9 month contract with this provider and honestly, I’m not too worried about the brute-force attack right now. It’s not a critical website with no personal information and I make regular backups. I can take my own security measures like you mentioned.
I will be looking for a different host, but for the time being I’m just interested in getting my site up and running.
I doubt my hosting provider is going to listen to suggestions I make in terms of security.
If they say they’ve blocked access to it, how come I can still access it when I browse to: http://new.mjboerenkamp.nl/xmlrpc.php
Or is there more to it?
Also, I understand moving the file doesn’t stop attacks from being possible, but I can imagine they only block request to the standard location of the file, and moving it to a different directory (like, moving WordPress to a different dir this way: http://codex.wordpress.org/Giving_WordPress_Its_Own_Directory ) could be a way around their “block”.
Would that make sense?
That’s odd, it shouldn’t really have been down and right now it’s up for me. The isup site confirms it right now. Maybe it’s been down temporarily. It should be up now.
In the meanwhile, my hosting provider confirmed they’ve blocked access to the rpcxml file because they say they’ve been under brute force attacks on this file lately.
Is there a way around it? They said a workaround is moving the WordPress folder to a different directory, can anyone confirm that?
Forum: Themes and Templates
In reply to: [Theme: Twenty Sixteen] Transparant background, CSS?Sorry for bumping, but I was hoping someone might have an idea. It’s one of the few things I’m stuck on.