Xmlrpc: Difference between revisions

From Acenet Knowledgebase
Jump to navigation Jump to search
No edit summary
No edit summary
 
(11 intermediate revisions by the same user not shown)
Line 1: Line 1:
Due to the large amounts of XMLRPC attacks we see against our shared and reseller servers, Acenet has decided to block access to all xmlrpc.php files globally on the server.  If you have an application that needs to use xmlrpc, you will need to manually enable access for specific IPs to the file with the following.<br><br>
Due to the large amounts of XMLRPC attacks we see against our shared and reseller servers, Acenet has decided to block access to all xmlrpc.php files globally on our shared and reseller servers.  If you have an application that needs to use xmlrpc, you can manually enable access for specific IPs to the file with the following.<br><br>
<b>NOTE:</b> Acenet does not recommend enabling xmlrpc access for all IP addresses, due to attacks.  Specific static IPs are strongly recommended.
<br><br>


----
1) In your home directory, open or create a ".htaccess" text file.
 
<br><br>
 
2) In the .htaccess file, add the following text.  Replace the XXX.XXX.XXX.XXX with the static IP of the connecting server/workstation.
1) in your home directory, open or create a ".htaccess" text file.
<br>
 
2) In the .htaccess file, add the following text:


Apache 2.2
<pre>
<pre>
<Files xmlrpc.php>
<Files xmlrpc.php>
Line 16: Line 17:
</pre>
</pre>


Replace the XXX.XXX.XXX.XXX with the static IP of the connecting server.
Apache 2.4
<pre>
<Files xmlrpc.php>
Require all denied
Require ip XXX.XXX.XXX.XXX
</Files>
</pre>


3) Save the file.
3) Save the file.
<br><br>


You should now be able to connect via XMLRPC from that specified IP.
You should now be able to connect via XMLRPC from that specified IP.  <br><br>
If you run into any problems, or need additional assistance, please open a new technical support ticket at our [https://billing.ace-host.net online helpdesk].

Latest revision as of 15:25, 30 October 2018

Due to the large amounts of XMLRPC attacks we see against our shared and reseller servers, Acenet has decided to block access to all xmlrpc.php files globally on our shared and reseller servers. If you have an application that needs to use xmlrpc, you can manually enable access for specific IPs to the file with the following.

NOTE: Acenet does not recommend enabling xmlrpc access for all IP addresses, due to attacks. Specific static IPs are strongly recommended.

1) In your home directory, open or create a ".htaccess" text file.

2) In the .htaccess file, add the following text. Replace the XXX.XXX.XXX.XXX with the static IP of the connecting server/workstation.

Apache 2.2

<Files xmlrpc.php>
order deny,allow
deny from all
allow from XXX.XXX.XXX.XXX
</Files>

Apache 2.4

<Files xmlrpc.php>
Require all denied
Require ip XXX.XXX.XXX.XXX
</Files>

3) Save the file.

You should now be able to connect via XMLRPC from that specified IP.

If you run into any problems, or need additional assistance, please open a new technical support ticket at our online helpdesk.