widharrington12000
Forum Replies Created
-
Hello,
I changed my cache plugin and started using WP Fastest Cache because I heard it works with Visual Composer Grid element.
I’ve added the timeout rule to clear cache every 10 hours, but that doesn’t fix the problem for me. I’ve also tried adding the php filter given by one of the creators of the Visual Composer plugin. But that does not work either.
Are there any other recommendations to fix this VC grid problem?
Look forward to any response. Thanks.
The plugin is called “Disable XML-RPC”, can be found here.
Even with this plugin, when I visit mywebsite.com/xmlrpc.php I still don’t see a 403 error. But I’ve checked my site with a xmlrpc validator and I do get an error message saying my site has xmlrpc disabled.
Curiously, when I disabled the plugin and used only AIOWPS “disable xmlrpc” option box, then checked my site on the xml validator, I don’t get an error message. Not sure why that’s happening.
Also, I enabled the plugin about 12 hours ago, and I have yet to receive any failed login emails.
Once again, thanks for all your help.
- This reply was modified 8 years, 11 months ago by widharrington12000.
Hi @mbrsolution,
I tried your suggestion but that didn’t help.
I found a separate plugin that disables the xmlrpc functionality. That plugin fixed my problem.
Thank you for your help.
Hi @mbrsolution,
I contacted my host about this, they told me that adding an extra line of code might help. This is what I’ve added…
#AIOWPS_PINGBACK_HTACCESS_RULES_START
<Files xmlrpc.php>
order deny,allow
deny from all
allow from MY.IP.HERE
</Files>
#AIOWPS_PINGBACK_HTACCESS_RULES_END3rd to last line, I’ve added my IP address. But that didn’t help.
Also, the code to block the xmlrpc file already is on my .htaccess file but it looks different than what is on the documentation you provided. The code that’s on my .htaccess file looks like this…
#AIOWPS_PINGBACK_HTACCESS_RULES_START
<Files xmlrpc.php>
<IfModule mod_authz_core.c>
Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
Order deny,allow
Deny from all
</IfModule>
</Files>
#AIOWPS_PINGBACK_HTACCESS_RULES_ENDThe one from the documentation has less lines of code. I’ve tried replacing it with the one from the documentation, but still didn’t get a 403 error on mysite.com/xmlrpc.php
Can I change something from the code that’s already on my .htaccess file?
Any help I’d appreciate.
Thank you.
Hello,
I went through the documentation and followed all 3 steps, even adding the code into my.htaccess file and I still don’t get a 403 forbidden message when I visit mysite.com/xmlrpc.php
Is there anything else I can do?
Thank you.
Hi again, @mbrsolution
I disabled the plugin and I still can’t see the option to change my password. I guess this plugin isn’t the one causing this problem?
Hi @mbrsolution,
No, I’m only using AIOWPS plugin for security. Are there any known plugins that don’t play well with AIOWPS?
Tried the link you wrote above and I received the following message:
“XML-RPC server accepts POST requests only.”
I just double checked and I do have the XMLRPC and Pingback options checked. Does this mean the plugin isn’t working correctly on my site?
Please let me know how I can fix this. The continuous failed login attempts are driving me crazy.
I appreciate your help, thank you.
@mbrsolution thanks for your reply.
I’ve completely Blocked Access To XMLRPC and disabled Pingback Functionality From XMLRPC.
This has not stopped the login attempts on my site. I’m still receiving multiple failed login attempts on my page.
I’ve changed my login page, blocked access to XMLRPC and pingback, turned on login captcha and honeypot option is on too. This still hasn’t stopped login attempts on my site. It’s been going on non-stop for over 3 days now. I’ve changed the login lock out time to 3 hours and now every 3 hours I get a failed login attempt.
Is there anything I can do to get rid of these failed login attempts?
Thanks for your help.