S3E9: "Git Outta Here"

Comments 0

Previous EpisodeNext Episode
Recorded (UTC) Aired (UTC) Editor
2018-06-16 21:58:26 2018-07-04 01:25:24 "Edita"
Format SHA256 GPG Audio File
MP3 db04d1f4ac161f13b116e1452e51c439a281a8f7121cff28d55ed89ca36dbb8a click click
OGG 9404763bed429171875bdcb69af9992533dbaaf64e6f0951caea3e38255499b1 click click

In this episode we provide some initial experiences with some self-hosted GitHub alternatives: Gogs, Gitea, and GitLab.



Starts at 25m35s.

I was drinking chai (specifically, Stash’s Chai Spice Black tea though I didn’t mention it on-air). Paden was drinking nothing. Jthan was drinking water (but we convinced him to drink an Avery Brewing Liliko’i Kepolo for all of you).

  • Gogs, Gitea, and GitLab. Make sure you check out last episode for the lead-in for this!
    • Gogs
      • Not very well-maintained…
      • The documentation is terrible.
        • Tells user to use wget, but curl (not wget) is part of basic CentOS install.
        • Has you install e.g. Nginx from upstream Nginx repo, but it’s in EPEL.
        • Their provided Nginx configuration snippet does not work — at all.
        • Why don’t they run the actual application on a well-known alternate HTTP port like 8080?
      • Lacks some features that makes things less painful for user self-configuration/customization.
      • Gogs doesn’t even host their own code on their product. Their primary public repository for their source code is… on GitHub.
      • Tries way too hard to be (like) GitHub, right down to the interface.
      • LDAP support is fairly weak.
      • Poor non-FHS-standard packaging.
    • Gitea
      • No longer offer any packages (no RPM, no DEB, etc.).
      • Many of the same gripes as Gogs (since it’s a fork), especially with their docs (some of it is just flat-out WRONG).
      • But it DOES have some additional features.
      • TONS of (serious) security issues/incidents!
      • Shame it didn’t even work. F-!
    • GitLab
      • VERY competent competitor for GitHub in terms of features while still maintaining its own independence and feel.
      • We all like it the best of the three, BUT
      • It’s a beast and requires a larger amount of system resources than may be appropriate for your organization.
      • But they do offer hosted instances as well.
      • The install docs are probably the best of the three (and the install is the least painful).
        • They get points docked for having users blindly pipe curl to bash, using a script to configure a repository instead of just distributing an RPM to configure a repository (or provide a .repo file), AND they get points docked for their RPM quality. They even use Chef inside the RPM process, which is absolute madness.
      • They get half a point docked for using pygpgme instead of, you know, the Python GPGME bindings actually distributed with GnuPG/GPGME libraries. The script doesn’t seem to even require it, which is odd.
    • We didn’t mention it on-air and didn’t evaluate it, but there’s also GitBlit which you may want to give a spin.

Sysbadministration Award

In this segment, we highlight system administration mistakes. Think of them as the IT equivalent of the Darwin Awards. (1h02m45s)

GnuPG was parsing certain strings harmfully, allowing signatures to be spoofed. (It’s only possible if you specify --verbose mode).


  • Recorded on a Saturday instead of a Wednesday evening (when we usually record). June and July are …weird in terms of scheduling for us this year.
  • I was packing for SGDQ2018.
  • Jthan was preparing for RMGH 2018.
  • The Intel i9 that I mention/have is this.
  • AMD bought ATI as I self-corrected on-air.
  • I am, indeed, sorry. The quantum state of my apology has degraded to a fixed state, and Jthan was indeed correct about S3E8.


Music Credits
Track Title Artist Link Copyright/License
Intro Peek-Door Quest Rolemusic click CC-BY 4.0
Outro Pretend Malyssa Bellarosa click CC-BY-SA 4.0
(All music is royalty-free, properly licensed for use, used under fair use, or public domain.)



There are currently no comments on this article.


Enter your comment below. Fields marked * are required. You must preview your comment before submitting it.