XML RPC in WordPress

Attackers quite frequently try to exploit xml-rpc.php, a built-in file for WordPress which provides access to external services, such as JetPack, marketing services, etc. Most sites don’t need this functionality, so it can be blocked. I found this article listing a couple of ways to do it, and it’s one of the services we’ll add to our site this year, as part of the security checkup.

Two Ways to Fully Disable WordPress XML-RPC

You have to be careful, sure that nothing is using it. I wonder if there’s a plugin already out there which helps determine if it’s being used on a site. Will check and update if I find something.

Note to self: Check out new plugin, Google Site Kit

Site Kit by Google – Analytics, Search Console, AdSense, Speed

SQL to see domains for email addresses

I wanted to find out which domains were on somebody’s mailing list, and used this SQL command:

SELECT count((SUBSTRING_INDEX(SUBSTR(email, INSTR(email, ‘@’) + 1),’.’,1))), (SUBSTRING_INDEX(SUBSTR(email, INSTR(email, ‘@’) + 1),’.’,1)) FROM `phplist_user_user` group by (SUBSTRING_INDEX(SUBSTR(email, INSTR(email, ‘@’) + 1),’.’,1)) where confirmed=1 and blacklisted=0 order by count(SUBSTRING_INDEX(SUBSTR(email, INSTR(email, ‘@’) + 1),’.’,1)) desc

It resulted in this list. Pretty cool!

3916 gmail
496 yahoo
442 kellyservices
256 comcast
228 hotmail
195 officeteam
179 accountemps
163 aol
115 sbcglobal
85 volt
84 att
81 adeccona
78 bellsouth
76 outlook
76 roberthalffinance
65 us
58 roberthalftechnology
57 earthlink
56 me
56 msn
53 ajilonfinance
52 roberthalfmr
51 cox
47 right
43 mail
40 icloud
40 mac