Sir Apfelot Blog

20 January 2014

WordPress security: rename wp-login.php and protect it from hackers

In the last few days I was able to recognize attacks on the WordPress admin area "wp-admin" on some customer blogs. I use the login lockdown plugin for most blogs, which not only records the unsuccessful login attempts, but also [...]
17 December 2013
Rights of the XML-RPC file

Protect XML-RPC interface in WordPress via .htaccess

I just got a mail from my provider, according to which massive automated calls to the xmlrpc.php file in my blog had caused the entire server to reach its performance limit. Since the blog is on a [...]