Amazed this isnt a topic I could find at all with 10 google searches on the forums.
Everyone knows xmlrpc.php is being hammered by botnets looking for ways into wordpress. Even with the file removed, we were getting heavily loaded by 404s being returned to the hacker. Luckily they were coming from one IP so we could firewall this time. Not so lucky if we get hit by a botnet with only one hit per IP.
Ulimit doesnt seem to work for users' limits on # of processes total in the system, I figure because suexec is used by apache to execute as the user and isnt inheriting the ulimits.
Is there a way to limit the # of php/apache processes per user?
Everyone knows xmlrpc.php is being hammered by botnets looking for ways into wordpress. Even with the file removed, we were getting heavily loaded by 404s being returned to the hacker. Luckily they were coming from one IP so we could firewall this time. Not so lucky if we get hit by a botnet with only one hit per IP.
Ulimit doesnt seem to work for users' limits on # of processes total in the system, I figure because suexec is used by apache to execute as the user and isnt inheriting the ulimits.
Is there a way to limit the # of php/apache processes per user?