Linux 软件免费装

Prevent XMLRPC

开发者 nathancbriggs
更新时间 2012年12月22日 07:50
捐献地址: 去捐款
PHP版本: 3.0.1 及以上
WordPress版本: 3.5
版权: GPLv2 or later
版权网址: 版权信息

标签

spam security trackback xmlrpc

下载

0.1

详情介绍:

There's a vulnerability in WordPress's XMLRPC implementation, that permits trackback spam - even when you disable trackbacks. The only way to prevent this spam is to disable XMLRPC entirely. Some people have suggested renaming or deleting the xmlrpc.php file, but this is not a good idea, because it's altering core code and not trivial for novice users to undo. This plugin completely disables WordPress's XMLRPC functions, and doesn't alter or rename any core files. You can enable XMLRPC again by simply disabling this plugin. See http://www.acunetix.com/blog/web-security-zone/wordpress-pingback-vulnerability/ for detailed information about the vulnerability in WordPress's XMLRPC handler.

安装:

  1. Upload plugin-name.php to the /wp-content/plugins/ directory
  2. Activate the plugin through the 'Plugins' menu in WordPress
  3. That's it!

常见问题:

My Windows Live Writer does work

Windows Live Writer, and other similar services, use the XMLRPC interface to "talk" to your WordPress site, so it won't work while this plugin is active.

更新日志:

0.1