Is it safe/good practice to block or challenge access to
/wp-admin/admin-ajax.php from external sources?
i know some plugins use this php file so its not a good idea to block access to it all together.
So how to i create a rule to make sure only external requests to this file are blocked
Do I use the referer rule with AND
So if my site is https://rizbit.uk
Do I say block all requests to
/wp-admin/admin-ajax.php unless the referrer contains ‘rizbit.uk’