WordPress Premium Support

GoDaddy Help

Disable XML-RPC

XML-RPC allows mobile apps and remote connections to publish to WordPress. If you don't want to be able to post remotely to your site, follow the steps below to improve your site security.

You should always backup your site before making any changes.
Access the File Manager for your hosting plan. ( Web Hosting / cPanel )
Navigate to the folder in which WordPress is installed.
Edit the .htaccess file.
At the bottom of the .htaccess file, insert the following lines:
```
<Files xmlrpc.php>
Order Allow,Deny
Deny from all
</Files>
```
Save the changes to your file.

You've now disabled access to the XML-RPC function and reduced the number of ways your site can be attacked.

More info

Return to Improve WordPress security.
For more information about our premium support for WordPress, please visit our WP Premium Support Catalog.

Was this article helpful?

Community Related

Plesk XML Api - Can't install SSL Certificate - returns Permission Denied!

1 Replies

Last posted about 2 years ago.

XML-RPC Blocked

1 Replies

Last posted over 2 years ago.

Can´t access wp-admin after Jetpack update fail

2 Replies

Last posted almost 2 years ago.

Trying to connect Ulysses and any other third party blogging app, get error

6 Replies

Last posted almost 2 years ago.

Error import xml file from old word press to new godaddy word press

4 Replies

Last posted almost 4 years ago.

Don't see what you are looking for? Search the Community