diff --git a/config/initializers/rack_attack.rb b/config/initializers/rack_attack.rb
index 437b7e129..3c0253f3f 100644
--- a/config/initializers/rack_attack.rb
+++ b/config/initializers/rack_attack.rb
@@ -24,8 +24,8 @@ class Rack::Attack
   # Throttle all requests by IP (60rpm)
   #
   # Key: "rack::attack:#{Time.now.to_i/:period}:req/ip:#{req.ip}"
-  throttle('req/ip', limit: 300, period: 5.minutes) do |req|
-    req.ip # unless req.path.start_with?('/assets')
+  throttle('req/ip', limit: 100, period: 5.minutes) do |req|
+    req.ip
   end
 
   ### Prevent Brute-Force Login Attacks ###