{"id":71,"date":"2022-01-17T09:54:56","date_gmt":"2022-01-17T00:54:56","guid":{"rendered":"https:\/\/global-hack.com\/blog\/?p=71"},"modified":"2022-02-10T08:44:41","modified_gmt":"2022-02-09T23:44:41","slug":"%e3%80%90htaccess%e3%80%91%e3%82%b3%e3%83%94%e3%83%9a%e3%81%a7%e7%b0%a1%e5%8d%98xml-rpc%e3%82%bb%e3%82%ad%e3%83%a5%e3%83%aa%e3%83%86%e3%82%a3%e5%af%be%e7%ad%96%e3%80%90wordpress%e3%80%91","status":"publish","type":"post","link":"https:\/\/global-hack.com\/blog\/archives\/71","title":{"rendered":"\u3010htaccess\u3011\u30b3\u30d4\u30da\u3067\u7c21\u5358XML-RPC\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56\u3010WordPress\u3011"},"content":{"rendered":"<h3>\u77e5\u3089\u306a\u3044\u3068\u6050\u308d\u3057\u3044XML-RPC\u306e\u8105\u5a01<\/h3>\n<p>\u6700\u8fd1\u3067\u306f\u6c17\u8efd\u306b\u500b\u4eba\u3067\u3082WordPress\u3092\u4f7f\u3048\u308b\u3088\u3046\u306b\u306a\u3063\u305f\u3068\u601d\u3044\u307e\u3059\u3002\u305d\u3093\u306a\u4f55\u3082\u77e5\u3089\u306a\u3044\u4eba\u305f\u3061\u3092\u72d9\u3063\u305f\u60aa\u8005\u3082\u4e16\u306e\u4e2d\u306b\u306f\u4e00\u5b9a\u6570\u3044\u308b\u306e\u3067\u3001\u672c\u65e5\u306fXML-RPC\u306b\u7d5e\u3063\u3066\u30b3\u30d4\u30da\u3084\u30d7\u30e9\u30b0\u30a4\u30f3\u3067\u5bfe\u5fdc\u3067\u304d\u308b\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56\u3092\u3054\u7d39\u4ecb\u3057\u307e\u3059\u3002<\/p>\n<p>\u4ee5\u524d\u3054\u7d39\u4ecb\u3057\u305f<a href=\"https:\/\/global-hack.com\/blog\/archives\/58\" title=\"\u3010WordPress\u3011htaccess\u3067\u30ed\u30b7\u30a2\u30fb\u4e2d\u56fd\u30fb\u30a6\u30af\u30e9\u30a4\u30ca\u7b49\u304b\u3089\u30a2\u30af\u30bb\u30b9\u62d2\u5426\u3059\u308b\u65b9\u6cd5\">\u3010WordPress\u3011htaccess\u3067\u30ed\u30b7\u30a2\u30fb\u4e2d\u56fd\u30fb\u30a6\u30af\u30e9\u30a4\u30ca\u7b49\u304b\u3089\u30a2\u30af\u30bb\u30b9\u62d2\u5426\u3059\u308b\u65b9\u6cd5<\/a>\u3068\u3042\u308f\u305b\u3066\u65bd\u3059\u3068\u3088\u308a\u52b9\u679c\u7684\u306b\u306a\u308b\u3068\u601d\u3044\u307e\u3059\u3002<\/p>\n<p><!--more--><\/p>\n<h4>XML-RPC\u3092\u4f7f\u3063\u305f\u653b\u6483<\/h4>\n<p>DDoS\u653b\u6483\u306b\u3088\u308b\u5927\u91cf\u30ea\u30af\u30a8\u30b9\u30c8\u3002\u305d\u306e\u5927\u91cf\u306e\u30ea\u30af\u30a8\u30b9\u30c8\u3092\u9001\u308b\u76ee\u7684\u3068\u3057\u3066\u3001\u30d6\u30eb\u30fc\u30c8\u30d5\u30a9\u30fc\u30b9\u30a2\u30bf\u30c3\u30af\uff08\u7dcf\u5f53\u305f\u308a\u653b\u6483\uff09\u3067\u30ed\u30b0\u30a4\u30f3ID\u3084\u30d1\u30b9\u30ef\u30fc\u30c9\u3092\u53d6\u5f97\u3059\u308b\u3053\u3068\u304c\u3042\u3052\u3089\u308c\u307e\u3059\u3002\u4f8b\u3048\u3070\u3001\u3042\u306a\u305f\u306e\u30d6\u30ed\u30b0\u306exmlrpc.php\u30d5\u30a1\u30a4\u30eb\u3078\u7dcf\u5f53\u305f\u308a\u3067\u30ed\u30b0\u30a4\u30f3\u304c\u3067\u304d\u308b\u307e\u3067\u7e70\u308a\u8fd4\u3057\u3001\u30ed\u30b0\u30a4\u30f3\u3067\u304d\u305f\u3089\u4e57\u3063\u53d6\u308a\u5b8c\u4e86\u3066\u306a\u308f\u3051\u3067\u3059\u3002\u4e57\u3063\u53d6\u3063\u305f\u3042\u3068\u306f\u3001\u3044\u308d\u3044\u308d\u3067\u304d\u3066\u3057\u307e\u3044\u307e\u3059\u3088\u306d\uff01\uff1f<\/p>\n<p>\u79c1\u3082\u4ee5\u524d\u3001\u67d0\u770c\u30b5\u30a4\u30d0\u30fc\u72af\u7f6a\u5bfe\u7b56\u8ab2\u304b\u3089\u8efd\u304f\u6ce8\u610f\u3092\u53d7\u3051\u307e\u3057\u305f\u304c\u3001\u81ea\u8eab\u306e\u30d6\u30ed\u30b0\u304b\u3089\u4ed6\u306e\u30b5\u30fc\u30d0\u30fc\u3078\u6295\u7a3f\u5f8c\u306epingback\u3092\u30c0\u30a6\u30f3\u3055\u305b\u308b\u307b\u3069\u5927\u91cf\u306b\u30ea\u30af\u30a8\u30b9\u30c8\u3092\u9001\u3063\u305f\u5834\u5408\u3001\u4e57\u3063\u53d6\u3089\u308c\u305f\u3068\u3057\u3066\u3082\u6355\u307e\u308b\u306e\u306f\u4e0d\u6b63\u30a2\u30af\u30bb\u30b9\u3092\u884c\u3063\u305f\u30d6\u30ed\u30b0\u306e\u30b5\u30fc\u30d0\u30fc\u7ba1\u7406\u8005\u306a\u306e\u3067\u3059\u3002\u4e0d\u8d77\u8a34\u306b\u306a\u308b\u304b\u3082\u3057\u308c\u307e\u305b\u3093\u304c\u3001\u4e00\u65e6\u88ab\u7591\u8005\u306b\u306a\u308b\u3068\u3068\u3066\u3082\u751f\u6d3b\u304c\u5909\u308f\u3063\u3066\u3057\u307e\u3044\u307e\u3059\u3002<\/p>\n<p>\u3057\u305f\u304c\u3063\u3066\u3001\u5e73\u548c\u306b\u30b5\u30a4\u30c8\u904b\u55b6\u3059\u308b\u306b\u306fXML-RPC\u3078\u306e\u653b\u6483\u5bfe\u7b56\u306f\u5fc5\u8981\u4e0d\u53ef\u6b20\u306a\u306e\u3067\u3059\u3002<\/p>\n<p>&nbsp;<\/p>\n<h3>WordPress\u3067\u306eXML-RPC\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56\u30d7\u30e9\u30b0\u30a4\u30f3<\/h3>\n<p>WordPress\u3092\u4f7f\u3063\u3066\u3044\u308b\u3068\u69d8\u3005\u306a\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56\u30d7\u30e9\u30b0\u30a4\u30f3\u304c\u3042\u308a\u307e\u3059\u304c\u3001\u3053\u3053\u306f\u30e1\u30a4\u30c9\u30a4\u30f3\u30b8\u30e3\u30d1\u30f3\u306a\u300e<a href=\"https:\/\/ja.wordpress.org\/plugins\/siteguard\/\" target=\"_blank\" rel=\"nofollow noopener\" title=\"SiteGuard WP Plugin\"><strong>SiteGuard WP Plugin<\/strong><\/a>\u300f\u3092\u5f37\u304f\u304a\u3059\u3059\u3081\u3057\u307e\u3059\u3002<\/p>\n<p>\u4e0b\u8a18\u753b\u50cf\u3067\u308f\u304b\u308b\u3068\u304a\u308a\u3001XML-RPC\u9632\u5fa1\u304c\u65bd\u3055\u308c\u3066\u3044\u307e\u3059\u3002\u305d\u306e\u4ed6\u306b\u3082\u5fc5\u8981\u306a\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56\u3082\u5145\u5b9f\u3057\u3066\u3044\u307e\u3059\u306e\u3067\u3001WordPress\u3092\u59cb\u3081\u305f\u3070\u304b\u308a\u306e\u4eba\u306f\u305c\u3072\u4f7f\u3063\u3066\u307f\u3066\u304f\u3060\u3055\u3044\uff01<\/p>\n<p><img decoding=\"async\" src=\"https:\/\/global-hack.com\/blog\/wp-content\/uploads\/2022\/01\/SiteGuard-WP-Plugin.png\" alt=\"SiteGuard-WP-Plugin\u306e\u7d39\u4ecb\u753b\u50cf\" width=\"767\" height=\"628\" class=\"alignnone size-full wp-image-72\" \/><\/p>\n<p>&nbsp;<\/p>\n<h3>.htaccess\u30d5\u30a1\u30a4\u30eb\u3092\u7528\u3044\u305fXML-RPC\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56<\/h3>\n<p>\u5916\u90e8\u6295\u7a3f\u30c4\u30fc\u30eb\u3092\u4f7f\u7528\u3057\u3066WordPress\u3078\u6295\u7a3f\u3057\u305f\u3044\u969b\u306b\u3001\u3044\u3064\u3082\u30a8\u30e9\u30fc\u304c\u8fd4\u3055\u308c\u3066\u56f0\u3063\u3066\u3044\u308b\u3053\u3068\u3042\u308a\u307e\u305b\u3093\u304b\uff1f<\/p>\n<p>\u524d\u8ff0\u3057\u305f\u30d7\u30e9\u30b0\u30a4\u30f3\u306a\u3069\u3067XMP-RPC\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56\u306f\u3057\u305f\u3082\u306e\u306e\u3001\u809d\u5fc3\u306eWordPress\u3078\u306e\u6295\u7a3f\u304c\u3067\u304d\u306a\u304f\u306a\u3063\u3066\u306f\u4f5c\u696d\u304c\u6ede\u308a\u307e\u3059\u3002<\/p>\n<p>\u305d\u3093\u306a\u3068\u304d\u306f.htaccess\u30d5\u30a1\u30a4\u30eb\u306b\u4e0b\u8a18\u306e\u8981\u9818\u3067\u30b3\u30d4\u30da\u3059\u308c\u3070\u7c21\u5358\u306b\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56\u304c\u3067\u304d\u307e\u3059\uff01<\/p>\n<div class=\"hcb_wrap\">\n<pre class=\"prism line-numbers lang-plain\" data-lang=\"Plain Text\"><code>&lt;Files xmlrpc.php&gt;\r\nOrder Deny,Allow\r\nDeny from all\r\nAllow from 192.168.0.1\r\n&lt;\/Files&gt;\r\n<\/code><\/pre>\n<\/div>\n<p>\u4e0a\u8a18\u306e\u300e192.168.0.1\u300f\u304c\u5916\u90e8\u6295\u7a3f\u30b5\u30fc\u30d0\u306eIP\u30a2\u30c9\u30ec\u30b9\u306b\u306a\u308a\u307e\u3059\u306e\u3067\u3001\u304a\u4f7f\u3044\u306e\u6295\u7a3f\u30c4\u30fc\u30eb\u306eIP\u30a2\u30c9\u30ec\u30b9\u306b\u5909\u3048\u3066\u304a\u4f7f\u3044\u304f\u3060\u3055\u3044\u3002\u3053\u3053\u3067\u306f\u3001\u300c\u8a31\u53ef\u3059\u308b\u306e\u306f192.168.0.1\u306eIP\u30a2\u30c9\u30ec\u30b9\u3055\u3093\u3060\u3051\u3067\u3059\u3088\uff01\u300d\u3068\u3044\u3046\u610f\u5473\u3067\u3059\u3002<\/p>\n<p>\u306a\u304a\u3001\u524d\u8ff0\u3057\u305f\u30d7\u30e9\u30b0\u30a4\u30f3\u3068\u4f75\u7528\u3059\u308b\u969b\u306f\u3001\u30d7\u30e9\u30b0\u30a4\u30f3\u5074\u306eXML-RPC\u9632\u5fa1\u306e\u90e8\u5206\u306f\u7121\u52b9\u5316\u3057\u3066\u304b\u3089\u8a18\u8ff0\u3057\u4fdd\u5b58\u3057\u3066\u304f\u3060\u3055\u3044\u3002.htaccess\u30d5\u30a1\u30a4\u30eb\u306e\u8a2d\u7f6e\u5834\u6240\u306f\u3001\u300cwp-content\u300d\u300cwp-admin\u300d\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3084\u300cwp-config.php\u300d\u30d5\u30a1\u30a4\u30eb\u304c\u7f6e\u304b\u308c\u3066\u3044\u308b\u4e26\u3073\u306b\u3042\u308a\u307e\u3059\u3002\u307e\u305f\u3001\u300c# BEGIN WordPress\u300d\u300c# END WordPress\u300d\u306e\u524d\u304b\u5f8c\u306b\u8a18\u8ff0\u3057\u3066\u304f\u3060\u3055\u3044\u3002\u300c# BEGIN WordPress\u300d\u3068\u300c# END WordPress\u300d\u306e\u9593\u306f\u3001WordPress\u5074\u304b\u3089\u64cd\u4f5c\u3057\u305f\u969b\u306b\u66f8\u304d\u8fbc\u307e\u308c\u308b\u90e8\u5206\u306b\u306a\u308a\u307e\u3059\u3002<\/p>\n<h4>\u52d5\u4f5c\u78ba\u8a8d\u65b9\u6cd5<\/h4>\n<p>\u6295\u7a3f\u30c4\u30fc\u30eb\u5074\u304b\u3089\u306e\u6295\u7a3f\u304c\u6b63\u5e38\u3067\u3042\u308b\u3053\u3068\u3092\u78ba\u8a8d\u3057\u305f\u306e\u3061\u3001\u3054\u81ea\u8eab\u306e\u30d6\u30e9\u30a6\u30b6\u304b\u3089\u300chttps:\/\/\u904b\u55b6\u30b5\u30a4\u30c8\u30c9\u30e1\u30a4\u30f3\/xmlrpc.php\u300d\u3068\u6253\u3063\u3066\u30a2\u30af\u30bb\u30b9\u3057\u3066\u307f\u3066\u304f\u3060\u3055\u3044\u3002403error\u304c\u8868\u793a\u3055\u308c\u3066\u3044\u308b\u306a\u3089\u3070\u6210\u529f\u3067\u3059\uff01\u7c21\u5358\u3067\u3059\u306e\u3067\u662f\u975e\u3084\u3063\u3066\u307f\u3066\u304f\u3060\u3055\u3044\uff01<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<div class=\"mh-excerpt\"><p>\u77e5\u3089\u306a\u3044\u3068\u6050\u308d\u3057\u3044XML-RPC\u306e\u8105\u5a01 \u6700\u8fd1\u3067\u306f\u6c17\u8efd\u306b\u500b\u4eba\u3067\u3082WordPress\u3092\u4f7f\u3048\u308b\u3088\u3046\u306b\u306a\u3063\u305f\u3068\u601d\u3044\u307e\u3059\u3002\u305d\u3093\u306a\u4f55\u3082\u77e5\u3089\u306a\u3044\u4eba\u305f\u3061\u3092\u72d9\u3063\u305f\u60aa\u8005\u3082\u4e16\u306e\u4e2d\u306b\u306f\u4e00\u5b9a\u6570\u3044\u308b\u306e\u3067\u3001\u672c\u65e5\u306fXML-RPC\u306b\u7d5e\u3063\u3066\u30b3\u30d4\u30da\u3084\u30d7\u30e9\u30b0\u30a4\u30f3\u3067\u5bfe\u5fdc\u3067\u304d\u308b\u30bb\u30ad\u30e5 <a class=\"mh-excerpt-more\" href=\"https:\/\/global-hack.com\/blog\/archives\/71\" title=\"\u3010htaccess\u3011\u30b3\u30d4\u30da\u3067\u7c21\u5358XML-RPC\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56\u3010WordPress\u3011\">&#8230;<\/a><\/p>\n<\/div>","protected":false},"author":1,"featured_media":73,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3,15],"tags":[19,16,31,32],"class_list":{"0":"post-71","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-wordpress","8":"category-15","9":"tag-dos","10":"tag-htaccess","11":"tag-xmlrpc","12":"tag-32"},"aioseo_notices":[],"jetpack_featured_media_url":"https:\/\/global-hack.com\/blog\/wp-content\/uploads\/2022\/01\/xmlrpc-Security.jpg","_links":{"self":[{"href":"https:\/\/global-hack.com\/blog\/wp-json\/wp\/v2\/posts\/71","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/global-hack.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/global-hack.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/global-hack.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/global-hack.com\/blog\/wp-json\/wp\/v2\/comments?post=71"}],"version-history":[{"count":0,"href":"https:\/\/global-hack.com\/blog\/wp-json\/wp\/v2\/posts\/71\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/global-hack.com\/blog\/wp-json\/wp\/v2\/media\/73"}],"wp:attachment":[{"href":"https:\/\/global-hack.com\/blog\/wp-json\/wp\/v2\/media?parent=71"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/global-hack.com\/blog\/wp-json\/wp\/v2\/categories?post=71"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/global-hack.com\/blog\/wp-json\/wp\/v2\/tags?post=71"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}