Google Git
Sign in
eclipse / gerrit / platform / eclipse.platform.common / 9fdca46330652666e6d1d14a37881d89d5d9de90 / . / bundles / org.eclipse.platform.doc.user / tasks / tasks-cvs-ssh2.htm
blob: 5c9e1abd57ae1adc93c407d0d2d37265573ac2d1 [file] [log] [blame]
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<meta name="copyright" content="Copyright (c) IBM Corporation and others 2000, 2005. This page is made available under license. For full details see the LEGAL in the documentation book that contains this page." >
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
<meta content="text/css" http-equiv="Content-Style-Type">
<link type="text/css" charset="ISO-8859-1" href="../book.css"
rel="STYLESHEET">
<title>Connecting and configuring CVS with SSH</title>
<meta content="team" name="keyword">
<script language="JavaScript" src="PLUGINS_ROOT/org.eclipse.help/livehelp.js"> </script>
</head>
<body style="background-color: rgb(255, 255, 255);">
<h1 class="Head">Connecting and configuring CVS with SSH</h1>
<p>Eclipse includes an SSH client for accessing a remote CVS server.
The
client supports both the SSH1 and SSH2 protocol versions. To use SSH2
with a CVS repository select the <span style="font-weight: bold;">extssh</span>
connection type. </p>
<p>Different methods can be used to authenticate,
depending on the level of functionality and security you want. User authentication
methods used by the client by default are, in the following order: public-key,
Keyboard-Interactive, and password authentication.</p>
<h2>Authentication with Public Keys (keypair)</h2>
<p> Public-key authentication allows you to connect to a remote CVS server without
sending your password over the wire. This is a more secure authentication method
than password authentication. Public-key authentication uses two keys, a private
key that only you have--it should be kept in a secure place and protected with
a password. And the public key, which is placed on the server you wish to gain
access to.</p>
<p>
Eclipse supports generating both keys and you can copy the public key to the
server from within Eclipse. In order to use public key authentication follow
these steps:</p>
<ol>
<li>
<p>If you already have a private/public key for the CVS server, simply open the
<a class="command-link" href='javascript:executeCommand("org.eclipse.ui.window.preferences(preferencePageId=org.eclipse.team.cvs.ssh2.CVSSSH2Preferences)")'>
<img src="PLUGINS_ROOT/org.eclipse.help/command_link.png">
<span style="font-weight: bold;">Team &gt; CVS &gt;&nbsp; SSH2 Connection Method</span></a>
preference page and on the <span
style="font-weight: bold;">General </span>tab add your private key to the list
by selecting the <span style="font-weight: bold;">Add Private Key</span>
button. Your key will be used when authenticating.</p>
</li>
<li>
<p>If you don't have a keypair yet, in the preferences page, go to the <span style="font-weight: bold;">Key
Management</span> page.</p>
</li>
<li>
<p>Select either a <span style="font-weight: bold;">Generate RSA key</span>
(if your server supports version 1 of the protocol) or <span
style="font-weight: bold;">Generate DSA key</span> (for version 2).</p>
</li>
<li>
<p>A public key and private key will be generated. The public key
will be shown in the read-only text area. </p>
</li>
<li>
<p>The next step is to copy the public key to your server. If your
server is running an OpenSSH server than you can use the <span
style="font-weight: bold;">Export via sftp</span> action. Otherwise
you will have to copy and paste the public key into your remote
~/.ssh/authorized_keys file.</p>
</li>
<li>
<p>Now you have to provide a password for your private key, and
save
it on your computer.</p>
</li>
</ol>
<p>So now that you have your keypairs generated and installed, the next
time you create a CVS location to the server you shouldn't enter a
password. When the connection is initialized, you will be prompted for
the passphrase for your private key. This is the most secure method of
authentication, as long as your private key is protected with a
passphrase.</p>
<p>
<span style="font-weight: bold;">Note</span>: exporting the public key
is only supported on OpenSSH enabled SSH servers.</p>
<h2>Authentication with Passwords</h2>
<p>
If your server is configured to support password authentication, then
you can simply enter your password when you create a CVS repository
location and that password will be used when authenticating with the
server. This is the simplest authentication method, but isn't as secure
as public keys.<br>
<br>
<span style="font-weight: bold;">Note</span>: It is not recommended that you
save your login passwords using Eclipse. The file that contains the file is
not sufficiently protected against intruders and as such you can comprise the
security of your system. If your company requires strict security practices
then your should use keypair authentication.</p>
<p><img alt="Related concepts"
src="../images/ngrelc.png" border="0"><br>
<a href="tasks-92.htm">Creating a CVS repository location</a><br>
<a href="../concepts/concepts-26.htm">Team programming with CVS</a> </p>
<p><img alt="Related reference"
src="../images/ngrelr.png" border="0"> <br>
<a href="../reference/ref-47.htm">CVS</a> </p>
</body>
</html>