Bots hitting xmlrpc causing high use of resources

  • hello, please I deactivated access to xmlrpc.php in my site but I’m using Jetpack.

    So rrecently, I keep on seeing my site go down in my shared hosting because of overuse of resources, when I contacted the hosting providers, they told me it’s bots keep on vising my site. I checked my Cloudflare and found our it was true. Now in my errors page in the cpanel, I keep on seeing reoccurrence of hits to my xmlrpc.php. Please help me with a solution to stop this.

    The page I need help with: [log in to see the link]

Viewing 2 replies - 1 through 2 (of 2 total)

  • Normally you manage these things through the firewall of your hosting, but as you have Cloudflare, that can be set up to stop a lot of bot traffic, even on the free plan.

    There are a few things to configure:

    Bot fight mode is one click and can filter out a lot of bad bots.

    WAF is more versatile and you can target things more specifically by setting rules, for example to block all access to /xmlrpc.php from certain countries, IP addresses, devices and much more.

    On the free plan there are 5 rules, and one rule can often cover many bases by using AND/OR logic.

    For more info it is best to try the Cloudflare forum as this is not a WordPress product or service and that is the best place for advice. If you have a paid plan, you will be able to contact their support for help.

    Thread Starter montelent

    (@montelent)

    ok. so after the whole troubleshooting, i found out the problem is from my wp rocket caching and preloading. its using much resources but the host isnt capable to handle. please can someone proffer a solution of a caching plugin that wont create trouble for shared hosting. Thank you.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Bots hitting xmlrpc causing high use of resources’ is closed to new replies.