Commit 9aa07a7e authored by Douwe Maan's avatar Douwe Maan

Merge branch 'update-rack-attack-deprecation-note-in-docs' into 'master'

Adds rack attack disabled by default notice to documentation

See merge request gitlab-org/gitlab-ce!20833
parents cd03a8ad f0f285ef
...@@ -9,6 +9,10 @@ In case you find throttling is not enough to protect you against abusive clients ...@@ -9,6 +9,10 @@ In case you find throttling is not enough to protect you against abusive clients
Rack Attack offers IP whitelisting, blacklisting, Fail2ban style filtering and Rack Attack offers IP whitelisting, blacklisting, Fail2ban style filtering and
tracking. tracking.
**Note:** Starting with 11.2, Rack Attack is disabled by default. To continue
using this feature, please enable it in your `gitlab.rb` by setting
`gitlab_rails['rack_attack_git_basic_auth'] = true`.
By default, user sign-in, user sign-up (if enabled), and user password reset is By default, user sign-in, user sign-up (if enabled), and user password reset is
limited to 6 requests per minute. After trying for 6 times, the client will limited to 6 requests per minute. After trying for 6 times, the client will
have to wait for the next minute to be able to try again. have to wait for the next minute to be able to try again.
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment