Feature Request - Block access to xmlrpc.php - Enhance Control Panel

Feature Request - Block access to xmlrpc.php

ivansalloum

Andreas You could block it from the .htaccess file.

Andreas

Yes correct. But an option in the CP would be much easier for users.

ivansalloum

Andreas You‘re right.

Shaijee

This type of security features should be added in the Panel and WP Toolkit.

Peertje

Shaijee

Zoinkies

Handled through WAF don’t need to add bloat to Enhance when it’s faster, easier and more secure to do it via a WAF.

-1

Shoeman

I'm late to the party here, but is there a way to bulk apply this? I'm using NGINX.

Kosta

pratik_asabe

You can use cloudflare WAF free rule to block it at DNS level, moreover you can use one simple plugin ASE and enable simple toggle to do it at wordpress level.. use cpfence/cpguard security suite to block it at server level..

idk why ppl do not just try simple things available to them before posting anything as a feature request here!

xyzulu

pratik_asabe idk why ppl do not just try simple things available to them before posting anything as a feature request here!

Lazy? Easier to +1 than to increase your server admin skills or even search these forums?

-1 for this feature from me. We don’t need more endless minor specialised features like this.

gmakhs

xyzulu enhance already has wordpress security on the roadmap so it's coming either we like it or not

Kosta

I like toggle buttons in enhance level.
For instance when v12 was released I asked Adam to add toggle button on LSE server options to allow 7080 port so we can quickly head to LSE webadmin dashboards with 2 clicks but he just add a Text description to allow 7080 port.
Similar here - enhance and forget the panel at his level.

Kosta

gmakhs yeiii