Annotation of src/usr.bin/ssh/ssh.h, Revision 1.76.4.1
1.76.4.1! brad 1: /* $OpenBSD: ssh.h,v 1.78 2006/08/03 03:34:42 deraadt Exp $ */
1.64 stevesk 2:
1.1 deraadt 3: /*
1.25 deraadt 4: * Author: Tatu Ylonen <ylo@cs.hut.fi>
5: * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
6: * All rights reserved
1.38 markus 7: *
1.50 deraadt 8: * As far as I am concerned, the code I have written for this software
9: * can be used freely for any purpose. Any derived versions of this
10: * software must be clearly marked as such, and if the derived work is
11: * incompatible with the protocol description in the RFC file, it must be
12: * called by a name other than "ssh" or "Secure Shell".
1.25 deraadt 13: */
1.1 deraadt 14:
15: /* Cipher used for encrypting authentication files. */
16: #define SSH_AUTHFILE_CIPHER SSH_CIPHER_3DES
17:
18: /* Default port number. */
19: #define SSH_DEFAULT_PORT 22
20:
21: /* Maximum number of TCP/IP ports forwarded per direction. */
22: #define SSH_MAX_FORWARDS_PER_DIRECTION 100
23:
1.26 markus 24: /*
25: * Maximum number of RSA authentication identity files that can be specified
26: * in configuration files or on the command line.
27: */
1.1 deraadt 28: #define SSH_MAX_IDENTITY_FILES 100
1.76 dtucker 29:
30: /*
31: * Maximum length of lines in authorized_keys file.
32: * Current value permits 16kbit RSA and RSA1 keys and 8kbit DSA keys, with
33: * some room for options and comments.
34: */
35: #define SSH_MAX_PUBKEY_BYTES 8192
1.1 deraadt 36:
1.26 markus 37: /*
1.70 deraadt 38: * Major protocol version. Different version indicates major incompatibility
1.26 markus 39: * that prevents communication.
1.37 markus 40: *
1.26 markus 41: * Minor protocol version. Different version indicates minor incompatibility
42: * that does not prevent interoperation.
43: */
1.37 markus 44: #define PROTOCOL_MAJOR_1 1
45: #define PROTOCOL_MINOR_1 5
46:
47: /* We support both SSH1 and SSH2 */
48: #define PROTOCOL_MAJOR_2 2
49: #define PROTOCOL_MINOR_2 0
1.1 deraadt 50:
1.26 markus 51: /*
52: * Name for the service. The port named by this service overrides the
53: * default port if present.
54: */
1.1 deraadt 55: #define SSH_SERVICE_NAME "ssh"
56:
1.26 markus 57: /*
1.71 stevesk 58: * Name of the environment variable containing the process ID of the
59: * authentication agent.
1.26 markus 60: */
1.60 markus 61: #define SSH_AGENTPID_ENV_NAME "SSH_AGENT_PID"
1.15 markus 62:
1.26 markus 63: /*
64: * Name of the environment variable containing the pathname of the
65: * authentication socket.
66: */
1.60 markus 67: #define SSH_AUTHSOCKET_ENV_NAME "SSH_AUTH_SOCK"
1.29 markus 68:
69: /*
1.60 markus 70: * Environment variable for overwriting the default location of askpass
1.29 markus 71: */
72: #define SSH_ASKPASS_ENV "SSH_ASKPASS"
1.1 deraadt 73:
1.26 markus 74: /*
75: * Force host key length and server key length to differ by at least this
76: * many bits. This is to make double encryption with rsaref work.
77: */
1.1 deraadt 78: #define SSH_KEY_BITS_RESERVED 128
79:
1.26 markus 80: /*
81: * Length of the session key in bytes. (Specified as 256 bits in the
82: * protocol.)
83: */
1.1 deraadt 84: #define SSH_SESSION_KEY_LENGTH 32
1.63 stevesk 85:
86: /* Used to identify ``EscapeChar none'' */
87: #define SSH_ESCAPECHAR_NONE -2
1.65 stevesk 88:
89: /*
90: * unprivileged user when UsePrivilegeSeparation=yes;
1.69 stevesk 91: * sshd will change its privileges to this user and its
1.65 stevesk 92: * primary group.
93: */
1.68 deraadt 94: #define SSH_PRIVSEP_USER "sshd"
1.66 stevesk 95:
96: /* Minimum modulus size (n) for RSA keys. */
97: #define SSH_RSA_MINIMUM_MODULUS_SIZE 768
1.75 markus 98:
99: /* Listen backlog for sshd, ssh-agent and forwarding sockets */
100: #define SSH_LISTEN_BACKLOG 128