Step::2 Under that, you can access ‘File Manager’.
Step::3 Next, in File Manager, your website’s folders should be under the folder named ‘public_html’. Here, you’ll see three main folders – wp-admin, wp-content, and wp-includes.
Step::4 You should see a file named ‘htaccess’ here. If you don’t, you can use the search bar on the top-right of the screen to look for it.
Step::5 Open the .htaccess file by right-clicking and choosing ‘Edit’.
Step::6 To restrict access of XML-RPC, paste the following code to this file:
# Block WordPress xmlrpc.php requests
<Files xmlrpc.php>
order deny,allow
deny from all
allow from xxx.xxx.xxx.xxx
</Files>
Step::7 In the 5th line ‘allow from xxx.xxx.xxx.xxx’, replace the x’s with your IP address, if you would like to retain XML-RPC from a particular IP. Otherwise, you can simply delete this line.
Step::8 Click on Save Changes tab and close the file. The code disables XML-RPC.
Now that you’ve disabled the XML-RPC function in WordPress, you’ve made your Website one level more secure.
Visit our Blog for more details. You can also watch the video here.
