{"id":232553,"date":"2023-01-22T18:39:00","date_gmt":"2023-01-22T15:39:00","guid":{"rendered":"https:\/\/wordpress.mediadoma.com\/?p=232553"},"modified":"2022-11-10T10:32:36","modified_gmt":"2022-11-10T07:32:36","slug":"quickhostuk-wordpress-brute-force-amplification-attacks-against-xmlrpc","status":"publish","type":"post","link":"https:\/\/wordpress.mediadoma.com\/fi\/quickhostuk-wordpress-brute-force-amplification-attacks-against-xmlrpc\/","title":{"rendered":"QuickhostUK &#8211; WordPress &#8211; Brute Force Amplification Attacks Against XMLRPC"},"content":{"rendered":"<p>Sucurin tietoturvatiedotteen mukaan &#8211;<\/p>\n<p>quickhostuk<\/p>\n<blockquote>\n<p>Hy\u00f6kk\u00e4\u00e4j\u00e4t k\u00e4ytt\u00e4v\u00e4t hyv\u00e4kseen yht\u00e4 XML-RPC:n piilotettuja ominaisuuksia \u2013 k\u00e4ytt\u00e4m\u00e4ll\u00e4 system.multicall-menetelm\u00e4\u00e4 useiden Brute Force -yritysten suorittamiseen yhden viestipyynn\u00f6n sis\u00e4ll\u00e4. Sen sijaan, ett\u00e4 kohdistaisit suoraan wp-login.php:hen, k\u00e4ytt\u00e4j\u00e4 kiert\u00e4\u00e4 j\u00e4rjestelm\u00e4n kohdistamalla menetelmi\u00e4 eritt\u00e4in suositun XML-RPC:n sis\u00e4ll\u00e4.<\/p>\n<\/blockquote>\n<p>T\u00e4m\u00e4 hy\u00f6kk\u00e4ys vahvistaa Brute Force -yrityksi\u00e4 eritt\u00e4in suurissa sarjoissa ja naamioi yritykset tekniikalla, joka tekee tunnistamisen ja lievent\u00e4misen eritt\u00e4in vaikeaksi. Hy\u00f6dynt\u00e4m\u00e4ll\u00e4 system.multicall-menetelm\u00e4\u00e4 <a href=\"https:\/\/helloacm.com\/using-xmlhttp-in-vbscript\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">XML-RPC<\/a> :ss\u00e4, hy\u00f6kk\u00e4\u00e4j\u00e4 pystyy piilottamaan 100 \/ 1 000 salasanaa yhden HTTP \/ <a href=\"https:\/\/helloacm.com\/how-to-setup-multiple-ssl-https-on-one-server-vps-or-dedicate-server\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">HTTPS<\/a> &#8211; pyynn\u00f6n sis\u00e4ll\u00e4.<\/p>\n<p>Jos olet QuickHostUK Managed Hosting -asiakas, olet jo suojattu t\u00e4lt\u00e4.<\/p>\n<p>Jos et ole <a href=\"https:\/\/helloacm.com\/quickhostuk-vps-upgrade-to-ssd\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">QuickHostUK<\/a> Managed Hosting -asiakas, varmista, ett\u00e4 olet my\u00f6s ryhtynyt tarvittaviin toimiin omien sivustojesi suojaamiseksi. Suosittelemme est\u00e4m\u00e4\u00e4n XML-RPC:n .htaccess-tiedostojesi kautta tai k\u00e4ytt\u00e4m\u00e4ll\u00e4 menetelm\u00e4\u00e4 system.multicall-sovellukseen kohdistuvien pyynt\u00f6jen poistamiseen. Vaihtoehtoisesti voimme hoitaa t\u00e4m\u00e4n puolestasi adhoc-hallintaj\u00e4rjestelm\u00e4ll\u00e4mme, joka t\u00e4ss\u00e4 tapauksessa olisi 10 puntaa sis. ALV per sivusto.<\/p>\n<p>Ota yhteytt\u00e4, jos haluat k\u00e4ytt\u00e4\u00e4 t\u00e4t\u00e4 palvelua tai sinulla on kysytt\u00e4v\u00e4\u00e4.<\/p>\n<p>Yst\u00e4v\u00e4llisin terveisin,<\/p>\n<p>QuickHostUK Limited<\/p>\n<p>Arvosana: 0.0\/ <strong>10<\/strong> (0 annettua \u00e4\u00e4nt\u00e4)<\/p>\n<p>302 sanaa<br \/>\n<strong>Viimeisin viesti<\/strong>: <a href=\"https:\/\/helloacm.com\/why-c-another-case-study\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">miksi C++ \u2013 toinen tapaustutkimus?<\/a><br \/>\n<strong>Seuraava viesti<\/strong>: <a href=\"https:\/\/helloacm.com\/delphi-tparallel-cleanup-needed\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">Delphi TParallel Cleanup tarvitaan<\/a><\/p>\n<p><div id=\"PostUnique_PostSource\" style=\"padding-top: 50px\">:  <a target=\"_blank\" rel=\"noopener nofollow\" href=\"\/\/helloacm.com\" class=\"external external_icon\">helloacm.com<\/a><\/div><\/p>\n","protected":false},"excerpt":{"rendered":"<p>QuickhostUK \u2013 WordPress \u2013 Brute Force Amplification Attacks Against XMLRPC<\/p>\n","protected":false},"author":1,"featured_media":223608,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","_wp_rev_ctl_limit":""},"categories":[719,843,1030,864],"tags":[1166],"class_list":["post-232553","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-kehittaejae","category-opetusohjelmia","category-turvallisuus","category-wordpress-5","tag-affiai-fi"],"_links":{"self":[{"href":"https:\/\/wordpress.mediadoma.com\/fi\/wp-json\/wp\/v2\/posts\/232553","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/wordpress.mediadoma.com\/fi\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wordpress.mediadoma.com\/fi\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wordpress.mediadoma.com\/fi\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/wordpress.mediadoma.com\/fi\/wp-json\/wp\/v2\/comments?post=232553"}],"version-history":[{"count":0,"href":"https:\/\/wordpress.mediadoma.com\/fi\/wp-json\/wp\/v2\/posts\/232553\/revisions"}],"wp:attachment":[{"href":"https:\/\/wordpress.mediadoma.com\/fi\/wp-json\/wp\/v2\/media?parent=232553"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wordpress.mediadoma.com\/fi\/wp-json\/wp\/v2\/categories?post=232553"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wordpress.mediadoma.com\/fi\/wp-json\/wp\/v2\/tags?post=232553"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}