[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #20821 [Internal Services/Tor Sysadmin Team]: VM to install gitlab

Subject: Re: [tor-bugs] #20821 [Internal Services/Tor Sysadmin Team]: VM to install gitlab
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Mon, 06 Mar 2017 15:34:12 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 06 Mar 2017 10:34:21 -0500
In-reply-to: <044.bd893180187aa0150d0a19b6b7c7987f@torproject.org>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <044.bd893180187aa0150d0a19b6b7c7987f@torproject.org>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#20821: VM to install gitlab
-------------------------------------------------+---------------------
 Reporter:  hiro                                 |          Owner:  tpa
     Type:  task                                 |         Status:  new
 Priority:  Medium                               |      Milestone:
Component:  Internal Services/Tor Sysadmin Team  |        Version:
 Severity:  Normal                               |     Resolution:
 Keywords:                                       |  Actual Points:
Parent ID:                                       |         Points:
 Reviewer:                                       |        Sponsor:
-------------------------------------------------+---------------------

Comment (by hiro):

 Hi,

 Replying off-line to a few questions that were raised when discussing
 about the Gitlab instance setup.
 the main concern I think is being able to safely run Gitlab without having
 the risk of accidental commits or write ups of our codebase.

 In this sense, Gitlab itself has a system of role and permissions that can
 be managed. Please see https://docs.gitlab.com/ce/user/permissions.html
 for more info. This would manage permissions on Gitlab side. Some of this
 setup is hardcoded in the installation and would probably need an attacker
 to have access to the machine to mess with it.

 Said this, in case we do not feel happy with this solution, we could
 always restrict access in git to the instance. I haven't researched this
 fully, but if it is needed I could do this before moving forward with
 provisioning the machine.

 Another possible solution that we could explore is the idea to run gitlab
 as a complete different remote and the members of the team using the
 repositories will have to take care to sync to Tor git remote when they
 want to merge and/or release something. Personally I would start with this
 solution. But not sure this is what the network team does want.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/20821#comment:11>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #21755 [Applications/Tor Browser]: Restrict third party cookies and other tracking data is unchecked in ESR52 based Tor Browser
Next by Author: Re: [tor-bugs] #20842 [User Experience]: Proposal: Improve Tor Browser font whitelist / bundled fonts
Previous by thread: Re: [tor-bugs] #13339 [Core Tor/Tor]: Prop140: Complete Consensus diffs / Merge GSoC project
Next by thread: Re: [tor-bugs] #20821 [Internal Services/Tor Sysadmin Team]: VM to install gitlab
Index(es):
- Author
- Thread