Commit 9aa07a7e authored by Douwe Maan's avatar Douwe Maan

Merge branch 'update-rack-attack-deprecation-note-in-docs' into 'master'

Adds rack attack disabled by default notice to documentation

See merge request gitlab-org/gitlab-ce!20833
parents cd03a8ad f0f285ef
......@@ -9,6 +9,10 @@ In case you find throttling is not enough to protect you against abusive clients
Rack Attack offers IP whitelisting, blacklisting, Fail2ban style filtering and
tracking.
**Note:** Starting with 11.2, Rack Attack is disabled by default. To continue
using this feature, please enable it in your `gitlab.rb` by setting
`gitlab_rails['rack_attack_git_basic_auth'] = true`.
By default, user sign-in, user sign-up (if enabled), and user password reset is
limited to 6 requests per minute. After trying for 6 times, the client will
have to wait for the next minute to be able to try again.
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment