Thanks for reporting. You may want to try disabling Rack Attack until we
resolve the issue. To /etc/gitlab/gitlab.rb, add:
gitlab_rails['rack_attack_git_basic_auth'] = {
'enabled' => false
}
Then run `sudo gitlab-ctl reconfigure`.
On Fri, Jul 22, 2016 at 3:12 PM, Dan Kegel <d...@kegel.com> wrote:
> All I have to do is turn on build support, grab the ci token from the
> settings page, do
> git clone g...@gitlab.removed.com:pastries/funkychicken.git
> git remote add httpsorigin
>
> https://gitlab-ci-token:remo...@gitlab.removed.com/pastries/funkychicken.git
> git lfs pull httpsorigin
> and bammo, our gitlab server blacklists our site's IP address.
> Turns out that one 'git lfs pull' command generates ten https fetches
> in quick succession, and the DOS attack defense module
> flags this legitimate use as an attack.
>
> Our IT called the support guys, and they claimed this was
> not a bug, but they didn't understand that the problem was
> caused by a single git lfs pull.
>
> --
> You received this message because you are subscribed to the Google Groups
> "GitLab" group.
> To unsubscribe from this group and stop receiving emails from it, send an
> email to gitlabhq+unsubscr...@googlegroups.com.
> To view this discussion on the web visit
> https://groups.google.com/d/msgid/gitlabhq/CAPF-yOY8VrfZXH3kWOXmuELwxzxYaDWAB%3Dn48xB9ZM%3DjkiOFHw%40mail.gmail.com
> .
> For more options, visit https://groups.google.com/d/optout.
>
--
You received this message because you are subscribed to the Google Groups
"GitLab" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to gitlabhq+unsubscr...@googlegroups.com.
To view this discussion on the web visit
https://groups.google.com/d/msgid/gitlabhq/CAMBWrQmMwZvA3B%2Bv-k5xK_5xwKZGC-BzDbUkJ8zrwPT8RViCcQ%40mail.gmail.com.
For more options, visit https://groups.google.com/d/optout.
