2021-09-30 23:02:18 +05:30
---
2021-11-18 22:05:49 +05:30
stage: Manage
2022-03-02 08:16:31 +05:30
group: Authentication & Authorization
2021-09-30 23:02:18 +05:30
info: To determine the technical writer assigned to the Stage/Group associated with this page, see https://about.gitlab.com/handbook/engineering/ux/technical-writing/#assignments
comments: false
type: index
---
# Security **(FREE)**
- [Password storage ](password_storage.md )
- [Password length limits ](password_length_limits.md )
- [Generated passwords for users created through integrated authentication ](passwords_for_integrated_authentication_methods.md )
- [Restrict SSH key technologies and minimum length ](ssh_keys_restrictions.md )
- [Rate limits ](rate_limits.md )
- [Webhooks and insecure internal web services ](webhooks.md )
- [Information exclusivity ](information_exclusivity.md )
- [Reset user password ](reset_user_password.md )
- [Unlock a locked user ](unlock_user.md )
- [User File Uploads ](user_file_uploads.md )
- [How we manage the CRIME vulnerability ](crime_vulnerability.md )
- [Enforce Two-factor authentication ](two_factor_authentication.md )
- [Send email confirmation on sign-up ](user_email_confirmation.md )
- [Security of running jobs ](https://docs.gitlab.com/runner/security/ )
- [Proxying images ](asset_proxy.md )
- [CI/CD variables ](../ci/variables/index.md#cicd-variable-security )
- [Token overview ](token_overview.md )
- [Project Import decompressed archive size limits ](project_import_decompressed_archive_size_limits.md )
## Securing your GitLab installation
Consider access control features like [Sign up restrictions ](../user/admin_area/settings/sign_up_restrictions.md ) and [Authentication options ](../topics/authentication/ ) to harden your GitLab instance and minimize the risk of unwanted user account creation.