diff --git a/config.inc.php.dist b/config.inc.php.dist
index 1f10e41..0e3d142 100644
--- a/config.inc.php.dist
+++ b/config.inc.php.dist
@@ -18,11 +18,16 @@
* along with roundcube-defense. If not, see .
*/
- // Whitelist and blacklist (processed in that order)
- // Example: array('10.0.0.1', '192.168.0.1/24', '172.16.0.0/12');
+ /* Whitelist and blacklist (processed in that order)
+ * Whitelisted IPs will never be banned
+ * Blacklisted IPs will receive HTTP 403 Forbidden
+ * Example: array('10.0.0.1', '192.168.0.1/24', '172.16.0.0/12');
+ * To only allow access to whitelisted IPs, set blacklist to: array('0.0.0.0/0');
+ */
$rcmail_config['defense_whitelist'] = array('127.0.0.1');
$rcmail_config['defense_blacklist'] = array();
+
/* IP is banned when there are failed
* login attempts within seconds */