Head's Up Wordpress Users - How to Fix this Vulnerability!
Head's Up Wordpress Users - How to Fix this Vulnerability!
A controversial and important question WordPress users are asking is whether or not we should remove a particular file from our sites. (XML-RPC.php) Google that question and you’ll get a range of answers about removing it - from “its a necessary security measure” to “it’s not a big deal” to “do NOT delete it!” So, what’s the answer? Here’s what I learned.
Note: Video descriptions may contain affiliate links. If you click on any of them and make a purchase, I may receive a commission. There is no additional charge on your purchase. This is only to help me maintain my channel and continue to provide free video tutorials on building your own wordpress website and business online. Thank you for your support!
Content
0.12 -> if you're looking into WordPress
1.979 -> security measures you're bound to come
4.319 -> across this controversial question as to
7.02 -> whether or not to remove the
10.16 -> xmlrpc.php file from your site
13.28 -> Google that question and you'll get a
15.9 -> range of answers from it's absolutely
18.42 -> necessary security measure to it's not a
21.539 -> big deal at all to it should not be
24.18 -> deleted warning warning so what's the
27.599 -> truth first what is it the XML RPC is a
32.34 -> remote procedure call interface I know
34.86 -> mouthful that allows WordPress users to
37.8 -> interact with their site from a remote
39.54 -> location okay so mobile device
43.44 -> it's been around since 2005 and while it
46.62 -> itself is not a security risk it can be
49.739 -> exploited by hackers if certain measures
52.32 -> aren't taken
54.059 -> at the end of the day the decision as to
57 -> whether or not to remove that file is up
60.539 -> to you I know I hate that answer too I'm
62.879 -> not done
63.84 -> if you're concerned about security risks
66.36 -> and removing it may give you peace of
68.22 -> mind however if you like publishing
70.799 -> posts or managing comments from a mobile
73.08 -> device keep the file active but take
77.04 -> steps to improve your site's overall
78.659 -> security posture additionally if you
81.84 -> disable or delete it that could create
84.119 -> compatibility issues with other plugins
86.58 -> or themes that may be relying on it the
90.479 -> step I took after researching it was to
92.939 -> disable XML RPC authentication in word
97.2 -> fence
98.34 -> word fence is a security plug-in I
100.68 -> highly recommend and have a video on
103.079 -> there's a free version which is the one
105.479 -> I discussed so let me show you how easy
107.52 -> it is to disable it in word pins so log
110.579 -> into your WordPress dashboard go down to
113.34 -> wordpins
115.38 -> login Securities which you'll click on
119.34 -> then click on the settings tab
122.82 -> scroll down a little until you see
127.02 -> right there disable XML RPC
130.56 -> Authentication
133.02 -> say
135.06 -> and you're done you've just improved
137.58 -> your own WordPress security
139.02 -> congratulations
141.239 -> okay after all that being said even if
144.36 -> you take these precautions there's still
146.76 -> no guarantee that your site won't be
148.98 -> hacked after all no system is 100 secure
153.78 -> see my video by hackers I'm davogger web
157.56 -> developer and I help entrepreneurs and
159.72 -> content creators build and grow their
161.819 -> online businesses thank you for watching
164.64 -> if you got something out of this video
166.44 -> or have questions about online business
168.239 -> or WordPress please leave a comment
170.459 -> below
171.42 -> and if you would consider subscribing as
173.879 -> a way to support my efforts I truly
176.459 -> appreciate it have a great rest of your
