Ping a Specific Port

Question

MyFault

Asked: 2015-12-20 06:32:51 +0800 CST2015-12-20 06:32:51 +0800 CST 2015-12-20 06:32:51 +0800 CST

Apache 2.4: Block access to xmlrpc.php of all domains

772

I would like to block the access to xmlrpc.php

I created a file in

/etc/apache2/conf.d/block.conf

and added the following content:

<FilesMatch "(^\.|wp-config\.php|xmlrpc\.php|(?<!robots)\.txt|(liesmich|readme)\.*)"> 
Require all denied
</FilesMatch>

If I try any domain on the server I'm still getting access: example.com/xmlrpc.php

I would have expected an "Forbidden"-error.

1 Answers

Voted

Vaibhav Panmand · Answer 1 · 2015-12-20T06:54:16+08:00

Best Answer

Vaibhav Panmand

2015-12-20T06:54:16+08:002015-12-20T06:54:16+08:00

Your syntax is correct but it seems directory /etc/apache2/conf.d not included in /etc/apache2/apache.conf. So either you can include this file with below syntax or move block.conf in directory /etc/apache2/conf-enabled which included in apache(ubuntu) by default.

open file /etc/apache2/apache2.conf in vim or your favroite editor and add below line at the end

Include /etc/apache2/conf.d/block.conf

Restart apache and check, it should be work

8

Apache 2.4: Block access to xmlrpc.php of all domains

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?