GitHub builds wall round private repos, makes devs in US-sanctioned countries pay for it

CEO finds it 'painful'. Affected coders, more so

Microsoft-owned GitHub has slapped restrictions on users residing in certain countries as the company bows to restrictions resulting from US sanctions, according to a hand-wringing tweet from CEO Nat Friedman.

Friedman took to Twitter over the weekend after users began noticing their accounts had been mysteriously blocked.

Affected users were presented with a yellow warning message with little or no warning last week as access to private repos on the service were summarily blocked.

Teams with developers spread across the globe will find it a little hard to collaborate should they have coders in the affected countries.

GitHub pointed to an explanatory post in which it explained that Crimea, Cuba, Iran, North Korea and Syria were subject to the sanctions and warned that users travelling in those regions may also see their account status "impacted".

Not to worry, though – you can always file an appeal, which we're sure won't be a privacy minefield. After all, all you have to do is upload photo ID proving you don't reside in the affect countries, along with a "selfie" and other identifying information.

Dare we remind caring, sharing Microsoft of the words "judge us by our actions" as users find themselves blocked with no warning due to where they happen to live?

Friedman attempted to defend the lack of notice, saying: "Our understanding of the law doesn't give the option to give anyone prior notice," reminding users that open-source repositories were not affected, just private ones.

Friedman also insisted, in the face of user protests, that the company's actions were due to it being subject to US trade laws.

Of course, there are workarounds. The block applies to GitHub's cloudy service. Users could use GitHub Enterprise Server to run things on-premises or in a user's own virtual private cloud. It would then be up to the user to ensure compliance with International Traffic in Arms Regulations and export controls.

Actually getting hold of the GitHub Enterprise Server in the affected countries would, however, be a challenge due to those pesky restrictions.

Another solution being considered by users, assuming they can get access to their code, is a migration to an alternative service such as GitLab or BitBucket.


Nadella tells worried GitHub devs: Judge us by our actions


Take care, however. GitLab warned of problems for some countries due to "legal restrictions" following its migration to Google Cloud last year. As for BitBucket, while owner Atlassian is based in Australia, it still has offices in the US. According to community support engineer Shannon Spaniol, it is prohibited from providing services to users located in certain countries.

As Friedman warned: "If you do any business in the US you have to obey US sanctions."

Creative users will doubtless publish workarounds, but with GitHub now pulling down the shutters, affected users would be advised to look at alternatives.

We've contacted GitLab and BitBucket for more details and will update if any are forthcoming. We also checked in with GitHub to see if the company has anything more to add to the apologetic tweets emitted by its CEO. We'll let you know if they get back to us – Vulture Central is almost definitely on some sort of list by now. ®

Similar topics

Other stories you might like

  • Warehouse belonging to Chinese payment terminal manufacturer raided by FBI

    PAX Technology devices allegedly infected with malware

    US feds were spotted raiding a warehouse belonging to Chinese payment terminal manufacturer PAX Technology in Jacksonville, Florida, on Tuesday, with speculation abounding that the machines contained preinstalled malware.

    PAX Technology is headquartered in Shenzhen, China, and is one of the largest electronic payment providers in the world. It operates around 60 million point-of-sale (PoS) payment terminals in more than 120 countries.

    Local Jacksonville news anchor Courtney Cole tweeted photos of the scene.

    Continue reading
  • Everything you wanted to know about modern network congestion control but were perhaps too afraid to ask

    In which a little unfairness can be quite beneficial

    Systems Approach It’s hard not to be amazed by the amount of active research on congestion control over the past 30-plus years. From theory to practice, and with more than its fair share of flame wars, the question of how to manage congestion in the network is a technical challenge that resists an optimal solution while offering countless options for incremental improvement.

    This seems like a good time to take stock of where we are, and ask ourselves what might happen next.

    Congestion control is fundamentally an issue of resource allocation — trying to meet the competing demands that applications have for resources (in a network, these are primarily link bandwidth and router buffers), which ultimately reduces to deciding when to say no and to whom. The best framing of the problem I know traces back to a paper [PDF] by Frank Kelly in 1997, when he characterized congestion control as “a distributed algorithm to share network resources among competing sources, where the goal is to choose source rate so as to maximize aggregate source utility subject to capacity constraints.”

    Continue reading
  • How business makes streaming faster and cheaper with CDN and HESP support

    Ensure a high video streaming transmission rate

    Paid Post Here is everything about how the HESP integration helps CDN and the streaming platform by G-Core Labs ensure a high video streaming transmission rate for e-sports and gaming, efficient scalability for e-learning and telemedicine and high quality and minimum latencies for online streams, media and TV broadcasters.

    HESP (High Efficiency Stream Protocol) is a brand new adaptive video streaming protocol. It allows delivery of content with latencies of up to 2 seconds without compromising video quality and broadcasting stability. Unlike comparable solutions, this protocol requires less bandwidth for streaming, which allows businesses to save a lot of money on delivery of content to a large audience.

    Since HESP is based on HTTP, it is suitable for video transmission over CDNs. G-Core Labs was among the world’s first companies to have embedded this protocol in its CDN. With 120 points of presence across 5 continents and over 6,000 peer-to-peer partners, this allows a service provider to deliver videos to millions of viewers, to any devices, anywhere in the world without compromising even 8K video quality. And all this comes at a minimum streaming cost.

    Continue reading

Biting the hand that feeds IT © 1998–2021