This is going to be a short post about how to block your webserver from serving a specific file.
WordPress comes with a file called xmlrpc.php
which enables you to use their mobile App on self-hosted blogs or enables ping- and trackbacks. However, there is a bunch of bots out there that attempt to brute-force their way in and can produce either high load or actually present a security risk.
Continue reading “NGINX / Apache: Block Requests to PHP file (xmlrpc.php)”