Download

Disable XML-RPC

Door Philip Erb

Beschrijving

Simpel gezegd, deze plugin gebruikt het ingebouwde WordPress filter “xmlrpc_enabled” om de XML-RPC API uit te schakelen op een WordPress site met 3.5 of hoger.

Beginning in 3.5, XML-RPC is enabled by default. Additionally, the option to disable/enable XML-RPC was removed. For various reasons, site owners may wish to disable this functionality. This plugin provides an easy way to do so.

Schermafdrukken

  • An example of the error that the WordPress mobile app will return when this plugin is enabled. This is expected and indicates that the plugin is working as intended.
  • An example of a curl command attempting to request data via XML-RPC calls to the site when the plugin is enabled. The error "XML-RPC services are disabled on this site" is expected and indicates that the plugin is working as intended.
  • An example of Danilo Ercoli's XML-RPC validator run against the site when the plugin is enabled. The error "Method not allowed" is expected and indicates that the plugin is working as intended.

Installatie

  1. Upload the disable-xml-rpc directory to the /wp-content/plugins/ directory in your WordPress installation
  2. Activeer de plugin via het ‘Plugins’ menu in WordPress
  3. De WordPress XML-RPC methoden zijn nu uitgeschakeld!

To re-enable XML-RPC, just deactivate the plugin through the ‘Plugins’ menu.

View the FAQ about “How do I know if the plugin is working?” to verify that this is working as intended.

FAQ

Is er een beheer interface voor deze plugin?

Nee. Deze plugin is zo eenvoudig als XML-RPC is uitgeschakeld (plugin geactiveerd) of XML-RPC is ingeschakeld (plugin is gedeactiveerd).

Hoe weet ik of de plugin werkt?

Er zijn een paar eenvoudige methoden om te controleren of XML-RPC is uitgeschakeld:

  1. Try using an XML-RPC WordPress client, like the official WordPress mobile apps. The WordPress mobile app should tell you that “XML-RPC services are disabled on this site” if the plugin is activated.
  2. Use the curl command to send an XML-RPC request to your site. If the response contains “XML-RPC services are disabled on this site” then the plugin is working properly and WordPress will not send data back to XML-RPC requests.
  3. Try the XML-RPC Validator, written by Danilo Ercoli of the Automattic Mobile Team – the tool is available at https://xmlrpc-check.hostpress.me/. Information and source code for the tool are available on GitHub at https://github.com/daniloercoli/WordPress-XML-RPC-Validator. Keep in mind that you want the validator to fail and tell you that XML-RPC services are disabled.

Bekijk de schermafbeeldingen voor voorbeelden van wat deze tools laten zien wanneer de plugin is ingeschakeld.

Er lijkt iets niet goed te werken

If the plugin is activated, but XML-RPC appears to still be working … OR … the plugin is deactivated, but XML-RPC is not working, then it’s possible that another plugin or theme function is affecting the xmlrpc_enabled filter. Additionally, server configurations could be blocking XML-RPC (i.e. blocking access to xmlrpc.php in the .htaccess file).

Beoordelingen

Perfect plugin on updated WP version

10 februari 2024
It works perfectly on WordPress 6.4.3 (tested in 2 sites), without plugins conflict. See the tab FAQ to check that after instal, just test it on website quoted there: (xmlrpc-check) - if the test returns Fail on check xmlrpc the plugin worked. You can also run that test BEFORE instal the plugin to prove its work.
Lees alle 29 beoordelingen

Bijdragers & ontwikkelaars

“Disable XML-RPC” is open source software. De volgende personen hebben bijgedragen aan deze plugin.

Bijdragers

Vertaal “Disable XML-RPC” naar jouw taal.

Interesse in ontwikkeling?

Bekijk de code, haal de SVN repository op, of abonneer je op het ontwikkellog via RSS.

Changelog

1.0.1

  • Blank lines removed from the plugin file.

1.0

  • Eerste release

Meta

Waarderingen

Bekijk alle
Log in om een beoordeling te versturen.

Ondersteuning

Iets te melden? Hulp nodig?

Het supportforum bekijken