On 08/28/2018 05:16 PM, Robin H. Johnson wrote: > On Tue, Aug 28, 2018 at 10:33:18PM +0200, Nathan Cutler wrote: >>> I think this is going to be the only surefire way we can prevent this >>> from happening again. >>> >>> Alternatively, I could block certain user agents (one in particular was >>> used this time) and add a Captcha to the registration page. >>> >>> I'd like the community's input. >> >> Non-member issue creation is widely used. It would suck if one had to be >> a developer to create Redmine issues (i.e., report bugs). >> >> So, my vote goes to the second option. >> >> Thanks, David, for fighting this anti-social behavior. > I was trying to create some issues last week and kept getting 403 even > signed in, I gave up at the time but have a backlog of issues I need to > open for RGW. > I have a feeling I know why this was happening. I commented out the block of code in the nginx config that was likely causing it. Can you try again please?
