We have a Scala project and we decided to use git. The problem is we are a very small distributed team and we want nobody outside of the team to have even the read only access to our git server (which has a valid IP and is world-accessible in the IP level). I have heard the git-daemon has no authentication mechanism by itself and you should somehow integrate it with ssh or something. What is the best (and easiest) way to make the git server respond only to authorized users ? Or perhaps git-daemon is not for this task ? I may add that I am looking for a simple and straightforward approach. I don't want to compete with github ;-)
Under your repository name, click Settings. In the "Access" section of the sidebar, click Collaborators & teams. Click Invite a collaborator. In the search field, start typing the name of person you want to invite, then click a name in the list of matches.
How secure is Git? At its core, Git is not built for security but for collaboration. As such, it is not secure but can be made secure through the use of tools and best practices. Self-hosting a Git server is a security nightmare.
@KirPiCH: gitosis is unmaintained, and effectively abandoned.
Gitolite is maintained, has a dozen features more than gitosis, and the author actually responds to emails!
[ps: I know this because I am the author ;-)]
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With