More

devicenull · on Jan 26, 2021

What happened to the pricing for self-managed instances? We rather like our onprem setup.

adamtulinius · on Jan 26, 2021

Some time ago they made the pricing for hosted and on-prem the same.

boleary-gl · on Jan 26, 2021

GitLab Team Member here. The pricing is the same for both our SaaS and self-managed products - and the tiers are now identical as well.

Freak_NL · on Jan 26, 2021

This is not clear from the pricing page, which talks about CI pipeline minutes and other SaaS only stuff.

john_cogs · on Jan 26, 2021

GitLab team member here. Thanks for the feedback. I'll relay that to the team who owns our pricing page.

This page contains comparisons for the self-managed features: https://about.gitlab.com/pricing/self-managed/feature-compar...

scoodah · on Jan 26, 2021

What's the justification for the self-managed and SaaS products being priced the same? That isn't intended to be snarky but a legitimate question, by the way.

boleary-gl · on Jan 26, 2021

You can read a bunch about how we made that decision here: https://about.gitlab.com/handbook/ceo/pricing/#price-differe...

thepill · on Jan 26, 2021

Its the same i guess!?

devicenull · on April 1, 2019

Which presumably only works if your site is using Cloudflare? Since you wouldn't be MITMing SSL in order to inject this header?

zackbloom · on April 1, 2019

This is correct. It's significantly harder to inject the origin IP into a TCP stream. We have ways [1] of doing it, but it requires some coordination on both sides.

1- https://blog.cloudflare.com/mmproxy-creative-way-of-preservi...

dsl · on April 1, 2019

Have you considered enabling this out of band? For example as a network administrator I could verify a CIDR block and receive a real time stream of 5-tuples (err, 7-tuples with the proxy?) destined to my network.

devicenull · on Jan 11, 2019

I've been trying to get Fi to resolve a billing issue.... I'm stuck in a loop with support where they keep asking me for a security code, then the next day they'll respond back saying it expired and they need another one. The codes only seem to be valid for 30m, so I don't have any idea why they keep asking for them...

devicenull · on Aug 30, 2018

PW requirements are defined by your company as well.

daveFNbuck · on Aug 30, 2018

Now I'm even more disappointed with my workplace :(

devicenull · on Aug 12, 2018

https://en.m.wikipedia.org/wiki/Eugene_Schieffelin

rcMgD2BwE72F · on Aug 12, 2018

A human, again?!

devicenull · on May 29, 2018

RPKI, but it's barely used

vbernat · on May 29, 2018

This is currently used to sign ROA. A rogue actor can easily work around that by including the original AS in the AS path of the announce.

floatingatoll · on May 29, 2018

Nope, that does not cover certificate issuance for IP addresses in that range.

devicenull · on May 24, 2018

Just wait until you hear my life hack about using plastic to prevent things from getting wet.

devicenull · on April 6, 2018

Except many of the big upstream providers don't actually filter anything. HE.net for example, doesn't.

We forgot to create some IRR entries and GTT just accepted our prefixes.

There is essentially no security, it's fairly trivial to hijack whatever space you want. (Doing it undetected is more difficult though!)

devicenull · on Jan 22, 2018

It's actually a /64 at Vultr.

devicenull · on Jan 5, 2018

No 2FA on staff accounts?