# Block WordPress xmlrpc.php requests in htaccess
<Files xmlrpc.php>
order deny,allow
deny from all
allow from 123.123.123.123
</Files>
// or via wp-config
// add this code to wp_config after the line require_once(ABSPATH .'wp-settings.php');
add_filter('xmlrpc_enabled','__return_false');