Block xmlrpc.php attack


Which commands below should I use to block xmlrpc.php attack?

1) - nano /var/www/

2) - nano /etc/nginx/sites-available/

3) - nano /etc/nginx/nginx.conf

Best Regards,



Hello Carlosa,

You need to create an additional file in your vhost conf like :

nano /var/www/ 

And to add the following content in this .conf file :

location = /xmlrpc.php {
 deny all;
 access_log off;
 log_not_found off;