About This Content

26th March, 2002

License

Eclipse.org makes available all content in this plug-in "Content". Unless otherwise indicated below, the Content is provided to you under the terms and conditions of the Common Public License Version 0.5 "CPL". For purposes of the CPL, "Program" will mean the Content.

Third Party Content

The Content includes items that have been sourced from third parties as follows:

The Java (TM) Ssh Applet

The plug-in is based on software developed by Cedric Gourio. If the source code is included, it is located in teamcvssshsrc.zip. The binary code is located in teamcvsssh.jar. The Java Ssh Applet includes the following copyright notice which must be included in any redistribution:

Copyright (c) 1998 Cedric Gourio
(http://www.cl.cam.ac.uk/~fapp2/software/java-ssh/)
(javassh@france-mail.com)

This program is FREE FOR COMMERCIAL AND NON-COMMERCIAL USE.
You can freely modify the code.

You should however include this copyright notice in any redistribution
and please keep in touch with the author for any feedback.

The Blowfish Encryption Algorithm

The plug-in is based on an algorithm developed by Bruce Schneier. The algorithm was originally published in a paper that is located at http://www.counterpane.com/bfsverlag.html. Your use of the Blowfish Encryption Algorithm in both source and binary code form contained in the plug-in is not subject to any additional terms and conditions. If the source code, Blowfish.java is included, it is located in teamcvssshsrc.zip. The binary code, Blowfish.class is located in teamcvsssh.jar.

Contributions

If this Content is licensed to you under the terms and conditions of the CPL, any Contributions, as defined in the CPL, uploaded, submitted, or otherwise made available to Eclipse.org, members of Eclipse.org and/or the host of Eclipse.org web site, by you that relate to such Content are provided under the terms and conditions of the CPL and can be made available to others under the terms of the CPL.

If this Content is licensed to you under license terms and conditions other than the CPL "Other License", any modifications, enhancements and/or other code and/or documentation "Modifications" uploaded, submitted, or otherwise made available to Eclipse.org, members of Eclipse.org and/or the host of Eclipse.org, by you that relate to such Content are provided under terms and conditions of the Other License and can be made available to others under the terms of the Other License. In addition, with regard to Modifications for which you are the copyright holder, you are also providing the Modifications under the terms and conditions of the CPL and such Modifications can be made available to others under the terms of the CPL.

Cryptography

Export Control

The plug-in contains encryption software. The country in which you are currently may have restrictions on the import, possession, and use, and/or re-export to another country, of encryption software. BEFORE using any encryption software, please check the country's laws, regulations and policies concerning the import, possession, or use, and re-export of encryption software, to see if this is permitted.

Encryption Items

Details of the encryption software in this plug-in are provided to assist in obtaining relevant export control classification and approval. Cryptography in this plug-in has been classified as Export Commodity Control Number (ECCN) 5D002.c.1 by the U.S. Government Department of Commerce, Bureau of Export Administration and deemed eligible for export under License Exception Technology Software Unrestricted (TSU) for object code and (cryptographic) source code, and License Exception ENC Retail for object code and no (cryptographic) source code.

The plug-in contains an implementation of the Secure Shell (SSH) protocol that encrypts the network traffic (program code files in file versioning systems) between a Concurrent Versions System (CVS) server and a CVS client. Data is encrypted using the Blowfish algorithm which is a 64-bit symmetric cipher that uses a key varying in length from 32 bits to 448 bits. The RSA PKCS #1 v1.5 key exchange algorithm is used to authenticate and exchange keys with a minimum modulus size of 96 bits and a maximum modulus size theoretically unlimited since the implementation uses the java.math.BigInteger class which has a maximum positive integer range limited only by the available memory in the computer. In practice, the key length is defined by the CVS server with which communication is initiated.

The following Java classes contain encryption items (the plug-in may contain both binary and source code):

  • org.eclipse.team.internal.ccvs.ssh.Blowfish
  • org.eclipse.team.internal.ccvs.ssh.Cipher
  • org.eclipse.team.internal.ccvs.ssh.Client
  • org.eclipse.team.internal.ccvs.ssh.ClientPacket
  • org.eclipse.team.internal.ccvs.ssh.Misc
Java and all Java-based trademarks and logos are trademarks or registered trademarks of Sun Microsystems, Inc. in the United States and other countries.