WP Tavern › Forums › Create Topic
alex XML-RPC has some redeeming features and can be useful, but is seriously lacking in the ability to limit it’s access to real users only. It also suffers somewhat from being an “all things to everyone” process that means if you want to use one tool, you effectively have to expose at least part of every other tool for prodding. For me, XML-RPC needs a simple and direct way to limit access (without using complex htaccess rules). As an example, if you are a blogger based in Argentina and only ever mobile blog from Argentina, it would be good to be able to limit access to the code to your own country. For those more commercial users who may use a WP editing tool from their office, limiting access to a given IP or IP block would probably be a good way to go. I would say that what XML-RPC needs is it’s own little control panel, with an ON/OFF switch (so people can entirely disable it) and the simple ability to limit access by country code, IP, or IP block. It may also be useful to have toggles to disable parts that are commonly not used and only abused, such as trackbacks. Not accepting trackback spam would likely be a very good start!
alex
XML-RPC has some redeeming features and can be useful, but is seriously lacking in the ability to limit it’s access to real users only. It also suffers somewhat from being an “all things to everyone” process that means if you want to use one tool, you effectively have to expose at least part of every other tool for prodding.
For me, XML-RPC needs a simple and direct way to limit access (without using complex htaccess rules). As an example, if you are a blogger based in Argentina and only ever mobile blog from Argentina, it would be good to be able to limit access to the code to your own country. For those more commercial users who may use a WP editing tool from their office, limiting access to a given IP or IP block would probably be a good way to go.
I would say that what XML-RPC needs is it’s own little control panel, with an ON/OFF switch (so people can entirely disable it) and the simple ability to limit access by country code, IP, or IP block. It may also be useful to have toggles to disable parts that are commonly not used and only abused, such as trackbacks. Not accepting trackback spam would likely be a very good start!
Name *
Email *
Website:
Topic Title (Maximum Length: 80):
Forum: — No forum —AI and WordPress Articles Blocks Showcase Discussions Events Introductions Jobs and Working in WordPress Podcast Episodes Site and Block Editor
Enter your email address to subscribe to this blog and receive notifications of new posts by email.
Email Address
Submit
Enter the destination URL
Or link to existing content