Feature Request 7-11-24

What is the name of the domain?

adsfs.com

What is the issue you’re encountering

Feature Request

What steps have you taken to resolve the issue?

It would be great if there was a customisable global rule that you could use across all websites in your account that stopped the DDOS and Wordpress security flaws.

Requests such as:
xmlrpc.php
wp-trackback.php
wlwmanifest.xml

Which are almost never used, but WP insist on including in every single update

Account-level WAF is already available but requires an Enterprise plan and a paid add-on to boot: https://developers.cloudflare.com/waf/account/

And there are ample ways to disable any WordPress features you don’t need… but the WordPress support forums would be the best place to discuss such: https://wordpress.org/support/forums/

Good luck!

1 Like

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.