Sign in · GitLab

22 views
Skip to first unread message

John Scott

unread,
Apr 27, 2023, 8:45:49 AM4/27/23
to mil...@googlegroups.com
Interesting …


-------------------------------------------
 Ion Channel - www.ionchannel.io
John Scott: COO & President

 Inline image 1
Software Supply Chain Intelligence
-------------------------------------------
John Scott

Kit Plummer

unread,
Apr 27, 2023, 11:07:25 AM4/27/23
to mil...@googlegroups.com
DISA starting to do their job?

--
--
You received this message because you are subscribed to the "Military Open Source Software" Google Group.
To post to this group, send email to mil...@googlegroups.com
To unsubscribe from this group, send email to mil-oss+u...@googlegroups.com
For more options, visit this group at http://groups.google.com/group/mil-oss?hl=en
 
www.mil-oss.org

---
You received this message because you are subscribed to the Google Groups "Military Open Source Software (Mil-OSS)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to mil-oss+u...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/mil-oss/CAPzJ1p1mwSF3mKkX98R-3cAcEyjVd9T8%3DJXxyDVO%3DjvYHTzeng%40mail.gmail.com.

David A. Wheeler

unread,
Apr 27, 2023, 12:01:44 PM4/27/23
to mil...@googlegroups.com


> On Apr 27, 2023, at 8:45 AM, John Scott <jms...@gmail.com> wrote:
>
> Interesting …
>
> https://web.git.mil/users/sign_in

Even *more* interesting is that they have a link from the sign-in page to a FAQ at:
https://public.sites.disa.ecs.mil/ecs/git-mil-faq/

A few highlights & commentary:

Q; Who can use git.mil?
A: Git.mil is available to any Department of Defense (DoD) employee with a current Common Access Card (CAC). Login is federated to the existing DoD Office365 accounts. If you are having trouble authenticating to the application, please try to self enroll in the federation tenant using this link. Accounts should be automatically provisioned but sometimes errors prevent their federation.

That is REALLY WEIRD because it doesn't say if DoD *contractors* with CACs can use it. If contractors can't use it, that makes it much less useful. However, if they're starting with employees, and then at some point will expand to others with a CAC, that would be sensible.

Q: What is the approved classification for data storage in git.mil?
A: Controlled Unclassified Information (CUI). Git.mil is not approved to store HIPAA or PII. So please keep those out.

Actually, that's better than I expected. Many projects can live with that.

Q: Who can I contact for support on git.mil?
A: Support for this service is very limited. For basic questions and troubleshooting, please contact disa...@mail.mil.

That's rather lame. I understand that they're afraid to make many commitments, but that would be rather off-putting for real work.

Q; What does it cost to use git.mil?
A: The service is currently free to DoD users.

That, at least, is a good thing.

Q: What software does git.mil run?
A: Git.mil runs gitlab software. Git.mil is running on kubernetes in a 10k user reference architecture. If you would like access to the specific design, please contact disa...@mail.mil

This makes sense to me. In particular, running GitLab (which is COTS) instead of some weird bespoke software is a good sign.

---- David A. Wheeler

Reply all
Reply to author
Forward
0 new messages