Over a million xmlrpc calls and counting?
-
Our fail2ban logs are literally full of waves upon waves of WP installations calling xmlrpc from the IP they’re on, like this:
fail2ban.filter [2241428]: INFO [wordpress] Ignore 185.x.x.x by ignoreself rule
The filter’s only been up for a few days, and already it’s well over a million lines!
Status for the jail: wordpress
|- Filter
| |- Currently failed: 746
| |- Total failed: 1105530 ?_?
|- File list: /var/log/apache2/access.log </code><br>
- Actions
|- Currently banned: 0
|- Total banned: 156
- Banned IP list: xxx.xxx.xxx.xxx [anything from 0 to 200+]I mean, why? What is WordPress doing??
(seems like this BBS can’t format code blocks properly. But you get what I mean)
- You must be logged in to reply to this topic.