Whm settings in case of wordpress xml-rpc ddos

I have a server with whm/cpanel where I host several WordPress websites. Recently one of the websites was under a ddos atack on xml-rpc (xml-rpc.php is a WordPress file). Here is the line from tail -f on access logs

******.58 - - [08/Oct/2015:12:32:34 +0200] "`POST /xmlrpc.php` HTTP/1.0" 403 - "-" "Mozilla/4.0 (compatible: MSIE 7.0; Windows NT 6.0)"

For the moment, I renamed that file and blocked the IP (and install a plugin on all wp sites that disabled xml-rpc), but I was wondering if is something I can do server wide?

Thanks!

Solution

To disable xmlrpc.php file server wide you need to update your pre-VirtualHost Include file with the following code. You can update this file through WHM

<Files xmlrpc.php>
Order Deny,Allow
Deny from all
</Files>

Remove items from admin bar
Prevent WordPress From Rewriting Capital Letters to Lowercase Letters
Elementor Plugin on Wordpress keeps loading and I get a console error /wp-admin/admin-ajax.php 500
How to make Glide.js slider work on Wordpress with Oxygen builder?
WooCommerce - removing country field from my-account page prevents from saving address
WordPress Plugin Activated but Not Visible in Gutenberg Blocks
How to set different product images for different languages in multilingual WooCommerce and polylang website?
Display specific WooCommerce order formatted metadata if it exists
WooCommerce Combined Cart & Checkout Page (Redirect Issue)
Choosing simple products and variable products separately in WooCommerce tables
How to have one query, but use it twice on a page in two seperate HTML blocks to display different posts
WooCommerce API giving JSON Syntax Error on every request
How do I set up a custom URL shortener for my posts?
wordpress - Big post IDs, is it Okay in the future?
WordPress filters - Filter to control which page is being loaded
ZipArchive class is missing on your server in Ubuntu
Which hook to save WooCommerce product meta in WooCommerce?
WooCommerce get first gallery image as fallback, if post thumbnail is missing and at least the placeholder image
WordPress Buddypress remove multiple users from members list
jQuery changing the response text from a form
WordPress query_posts with multiple tax_query
What is meant by [if ( ! defined( 'ABSPATH' ) )]
How to remove 'index.php' from permalinks [WordPress on Composer]
Publishing or uploading failed. Error message: "The response is not a valid JSON response"
How to expose all the ACF fields to Wordpress REST API in both pages and custom postypes
Enabling Gutenberg for WooCommerce product page will break reviews
Allow customers to buy only one product from defined WooCommerce product category
WooCommerce New Order email recipient based on Customer Billing State
Caching Amazon api data once a day
Custom Theme Single Product Page Wordpress/Woocommerce