[Discuss] first time build of GIT server
Derek Atkins
warlord at MIT.EDU
Thu Jan 30 11:31:09 EST 2014
"Edward Ned Harvey (blu)" <blu at nedharvey.com> writes:
>> From: discuss-bounces+blu=nedharvey.com at blu.org [mailto:discuss-
>> bounces+blu=nedharvey.com at blu.org] On Behalf Of Chris Johnson
>>
>> You'll need to get your team to use SSH keys, but that's standard
>> practice for most git management systems (e.g. gitolite).
>
> That may have been true at some point, but now, it works just as well
> over http or https.
>
> I will say, if you use http, the user's password goes across the wire
> plaintext. (I confirmed with wireshark.) So my recommendation would
> be to plan on using SSL right from the start. Every step along the
> way in the gitlab installer, substitute "https" for "http" and so
> forth.
You could just use git-over-ssh. Give each developer an account on the
server and then they can just:
git clone ssh://username@git.example.com/path/to/repo.git
You might also consider looking at gitolite. It uses ssh as the
connection framework (although you can set up HTTP(S) access if you
really need it). You store the developer's ssh public keys within
gitolite so each user does not necessarily need an actual "account" on
the server. In this case everyone would use:
git clone ssh://git@git.example.com/path/to/repo.git
Using gitolite also provides better access control mechanisms than just
using raw accounts.
-derek
--
Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory
Member, MIT Student Information Processing Board (SIPB)
URL: http://web.mit.edu/warlord/ PP-ASEL-IA N1NWH
warlord at MIT.EDU PGP key available
More information about the Discuss
mailing list