POST \/\/xmlrpc.php HTTP\/1.1<\/code><\/pre>\n\n\n\n\u4e0b\u9762\u6211\u4f1a\u4ecb\u7ecd\u76ee\u524d\u4e24\u79cd\u4e3b\u6d41\u7684web\u670d\u52a1\u5668\u5982\u4f55\u6765\u7981\u6b62\u7528\u6237\u8bbf\u95ee\u67d0\u4e2a\u7279\u5b9a\u7684\u8d44\u6e90<\/p>\n\n\n\n
Nginx<\/h2>\n\n\n\n
\u7531\u4e8e\u6211\u4f7f\u7528\u7684\u662fnginx\uff0c\u6240\u4ee5\u6211\u76f4\u63a5\u5728\u914d\u7f6e\u6587\u4ef6\u52a0\u4e86\u4e00\u6761location\u6307\u4ee4\u9650\u5236\u7528\u6237\u8bbf\u95ee\u8fd9\u4e2a\u6587\u4ef6<\/p>\n\n\n\n
\u62d2\u7edd\u6240\u6709\u4eba\u8bbf\u95ee\u7ed3\u5c3e\u5305\u542bxmlrpc.php\u7684\u6587\u4ef6<\/p>\n\n\n\n
location ~ \/xmlrpc\\.php$ {
deny all;
}
\u200b
\u200b
# pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
\u200b
location ~ \\.php$ {
root \/var\/www\/wordpress;
fastcgi_pass 127.0.0.1:9000;
fastcgi_index index.php;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
include fastcgi_params;
}
\u200b<\/code><\/pre>\n\n\n\n\u8fd9\u91cc\u6709\u4e2a\u7ec6\u8282\u5c31\u662f\uff0c\u5f53location\u7684\u4f18\u5148\u7ea7\u76f8\u540c\u65f6\uff08\u90fd\u662f ~\uff09\uff0cnginx\u4f1a\u4ece\u4e0a\u5230\u4e0b\u8bfb\u53d6\u914d\u7f6e\u6587\u4ef6\u76f4\u5230\u5339\u914d\u5230\u7b26\u5408\u7684\u7ed3\u675f\u3002\u6240\u4ee5\u8fd9\u4e2a\u62d2\u7edd\u6307\u4ee4\u5fc5\u987b\u653e\u5728\u6211\u7684PHP\u53cd\u5411\u4ee3\u7406\u914d\u7f6e\u7684\u524d\u9762\uff0c\u5426\u5219\u7684\u8bdd\u5f53\u6709\u4eba\u8bf7\u6c42xmlrpc.php\u5b83\u4f1a\u4f18\u5148\u5339\u914d\u5230 .php\u7684location\u5757\u7136\u540e\u505c\u6b62\u7ee7\u7eed\u5339\u914d\u3002\u5982\u679c\u4f60\u4f7f\u7528\u7684\u662f\u201c=\u201d \u5c31\u4e0d\u5b58\u5728\u8fd9\u4e2a\u95ee\u9898\uff0c\u56e0\u4e3a=\u7684\u4f18\u5148\u7ea7\u6700\u9ad8\u3002<\/p>\n\n\n\n
location\u7684\u5339\u914d\u4f18\u5148\u7ea7\u4ece\u9ad8\u5230\u4f4e<\/strong><\/p>\n\n\n\n=, ^~, ~\/~*, \u4e0d\u5e26\u7b26\u53f7<\/p>\n\n\n\n
\u4fee\u6539\u5b8c\u914d\u7f6e\u6587\u4ef6\u540e\u91cd\u65b0\u52a0\u8f7d<\/p>\n\n\n\n
nginx -s reload<\/code><\/pre>\n\n\n\n![\"\"](\"https:\/\/frogvps.com\/wp-content\/uploads\/2022\/05\/20220509a1-1024x208.jpg\")
\u5728\u6d4f\u89c8\u5668\u6d4b\u8bd5\u4e00\u4e0b\u80fd\u4e0d\u80fd\u8bbf\u95ee\uff0c\u770b\u5230403 Forbidden\u5c31\u662f\u914d\u7f6e\u597d\u4e86<\/figcaption><\/figure>\n\n\n\nApache<\/h2>\n\n\n\n
\u53ea\u9700\u8981\u5728\u670d\u52a1\u5668\u914d\u7f6e\u6587\u4ef6\u91cc\u52a0\u4e0a\u8fd9\u53e5<\/p>\n\n\n\n
<Files \"xmlrpc.php\">
Require all denied
<\/Files><\/code><\/pre>\n\n\n\n![\"\"](\"http:\/\/frogvps.com\/wp-content\/uploads\/2022\/05\/20220509a2.jpg\")
\u6d4b\u8bd5\u6548\u679c<\/figcaption><\/figure>\n","protected":false},"excerpt":{"rendered":"XML-RPC \u662f\u4e00\u79cd\u80fd\u591f\u5728 WordPress \u548c\u5176\u4ed6\u7cfb\u7edf\u4e4b\u95f4\u8fdb\u884c\u901a\u4fe1\u7684\u89c4\u8303\u3002\u65e9\u671f\u5b83\u88ab\u7528\u4e8e\u548c\u5176\u4ed6\u535a\u5ba2\u5e73\u53f0\u4e4b\u95f4\u7684\u901a\u8baf\uff0c\u652f\u6301trackbacks\u548cpingbacks\u3002\u867d\u7136\u73b0\u5728\u5df2\u7ecf\u8fc7\u65f6\u4e86\uff0c\u4f46\u662f\u6839\u76ee\u5f55\u7684xmlrpc.php\u6587\u4ef6\u4ecd\u7136\u5b58\u5728\u3002\u9ed1\u5ba2\u53ef\u80fd\u4f1a…<\/p>\n","protected":false},"author":1,"featured_media":202,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[7],"tags":[30,14,21],"topic":[],"class_list":["post-114","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-linux","tag-apache","tag-nginx","tag-wordpress"],"_links":{"self":[{"href":"https:\/\/frogvps.com\/index.php?rest_route=\/wp\/v2\/posts\/114","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/frogvps.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/frogvps.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/frogvps.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/frogvps.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=114"}],"version-history":[{"count":6,"href":"https:\/\/frogvps.com\/index.php?rest_route=\/wp\/v2\/posts\/114\/revisions"}],"predecessor-version":[{"id":216,"href":"https:\/\/frogvps.com\/index.php?rest_route=\/wp\/v2\/posts\/114\/revisions\/216"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/frogvps.com\/index.php?rest_route=\/wp\/v2\/media\/202"}],"wp:attachment":[{"href":"https:\/\/frogvps.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=114"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/frogvps.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=114"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/frogvps.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=114"},{"taxonomy":"topic","embeddable":true,"href":"https:\/\/frogvps.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftopic&post=114"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}