nginx: Blocking Access to /xmlrpc.php

I recently ran into an issue on a Wordpress site running behind an nginx web server. The site was frequently being attacked by a botnet hitting /xmlrpc.php so rapidly, it would eventually force the FastCGI processes behind nginx to consume all available CPU. Naturally, this would cause all legitimate traffic to the site to timeout. My solution was to insert the following in the nginx configuration for the site:

location = /xmlrpc.php {
    deny all;
}

Although this change did not stop the brute force attack, nginx was able to handle it much more elegantly (read: not cratering the server) than php-cgi.

My Bookshelf

Reading Now

Elevation

The Newton Papers
The Strange and True Odyssey of Isaac Newton's Manuscripts

Post Office

The Fabric of the Cosmos
Space, Time, and the Texture of Reality

And more...

Other Stuff

Rust for Rustaceans
Idiomatic Programming for Experienced Developers

Learning Modern Linux
A Handbook for the Cloud Native Practioner

Unit Testing
Principles, Practice, and Patterns

C.Le Fête

The Remote Engineer

ZaZo Designs