1 /* $OpenBSD: ssh.h,v 1.77 2006/03/25 22:22:43 djm Exp $ */
4 * Author: Tatu Ylonen <ylo@cs.hut.fi>
5 * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
8 * As far as I am concerned, the code I have written for this software
9 * can be used freely for any purpose. Any derived versions of this
10 * software must be clearly marked as such, and if the derived work is
11 * incompatible with the protocol description in the RFC file, it must be
12 * called by a name other than "ssh" or "Secure Shell".
18 #include <netinet/in.h> /* For struct sockaddr_in */
19 #include <pwd.h> /* For struct pw */
20 #include <stdarg.h> /* For va_list */
21 #include <syslog.h> /* For LOG_AUTH and friends */
22 #include <sys/socket.h> /* For struct sockaddr_storage */
23 #ifdef HAVE_SYS_SELECT_H
24 # include <sys/select.h>
27 /* Cipher used for encrypting authentication files. */
28 #define SSH_AUTHFILE_CIPHER SSH_CIPHER_3DES
30 /* Default port number. */
31 #define SSH_DEFAULT_PORT 22
33 /* Maximum number of TCP/IP ports forwarded per direction. */
34 #define SSH_MAX_FORWARDS_PER_DIRECTION 100
37 * Maximum number of RSA authentication identity files that can be specified
38 * in configuration files or on the command line.
40 #define SSH_MAX_IDENTITY_FILES 100
43 * Maximum length of lines in authorized_keys file.
44 * Current value permits 16kbit RSA and RSA1 keys and 8kbit DSA keys, with
45 * some room for options and comments.
47 #define SSH_MAX_PUBKEY_BYTES 8192
50 * Major protocol version. Different version indicates major incompatibility
51 * that prevents communication.
53 * Minor protocol version. Different version indicates minor incompatibility
54 * that does not prevent interoperation.
56 #define PROTOCOL_MAJOR_1 1
57 #define PROTOCOL_MINOR_1 5
59 /* We support both SSH1 and SSH2 */
60 #define PROTOCOL_MAJOR_2 2
61 #define PROTOCOL_MINOR_2 0
64 * Name for the service. The port named by this service overrides the
65 * default port if present.
67 #define SSH_SERVICE_NAME "ssh"
70 * Name of the environment variable containing the process ID of the
71 * authentication agent.
73 #define SSH_AGENTPID_ENV_NAME "SSH_AGENT_PID"
76 * Name of the environment variable containing the pathname of the
77 * authentication socket.
79 #define SSH_AUTHSOCKET_ENV_NAME "SSH_AUTH_SOCK"
82 * Environment variable for overwriting the default location of askpass
84 #define SSH_ASKPASS_ENV "SSH_ASKPASS"
87 * Force host key length and server key length to differ by at least this
88 * many bits. This is to make double encryption with rsaref work.
90 #define SSH_KEY_BITS_RESERVED 128
93 * Length of the session key in bytes. (Specified as 256 bits in the
96 #define SSH_SESSION_KEY_LENGTH 32
98 /* Used to identify ``EscapeChar none'' */
99 #define SSH_ESCAPECHAR_NONE -2
102 * unprivileged user when UsePrivilegeSeparation=yes;
103 * sshd will change its privileges to this user and its
106 #ifndef SSH_PRIVSEP_USER
107 #define SSH_PRIVSEP_USER "sshd"
110 /* Minimum modulus size (n) for RSA keys. */
111 #define SSH_RSA_MINIMUM_MODULUS_SIZE 768
113 /* Listen backlog for sshd, ssh-agent and forwarding sockets */
114 #define SSH_LISTEN_BACKLOG 128