From cf8a05aca28f27d7169f4228e62cac66dc30fcea Mon Sep 17 00:00:00 2001
From: Steve Allison <github.commit@stalks.nooblet.org>
Date: Wed, 20 Feb 2013 20:58:58 +0000
Subject: [PATCH] Clarify white/blacklist in config

---
 config.inc.php.dist | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/config.inc.php.dist b/config.inc.php.dist
index 1f10e41..0e3d142 100644
--- a/config.inc.php.dist
+++ b/config.inc.php.dist
@@ -18,11 +18,16 @@
  *  along with roundcube-defense.  If not, see <http://www.gnu.org/licenses/>.
  */
 
- // Whitelist and blacklist (processed in that order)
- // Example: array('10.0.0.1', '192.168.0.1/24', '172.16.0.0/12');
+ /* Whitelist and blacklist (processed in that order)
+  * Whitelisted IPs will never be banned
+  * Blacklisted IPs will receive HTTP 403 Forbidden
+  * Example: array('10.0.0.1', '192.168.0.1/24', '172.16.0.0/12');
+  * To only allow access to whitelisted IPs, set blacklist to: array('0.0.0.0/0');
+  */
  $rcmail_config['defense_whitelist'] = array('127.0.0.1');
  $rcmail_config['defense_blacklist'] = array();
  
+ 
  /* IP is banned when there are <defense_fail_max> failed
   * login attempts within <defense_fail_reset> seconds */