Annotation of src/usr.bin/ssh/ssh.h, Revision 1.77
1.77 ! djm 1: /* $OpenBSD: ssh.h,v 1.76 2004/12/06 11:41:03 dtucker Exp $ */
1.64 stevesk 2:
1.1 deraadt 3: /*
1.25 deraadt 4: * Author: Tatu Ylonen <ylo@cs.hut.fi>
5: * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
6: * All rights reserved
1.38 markus 7: *
1.50 deraadt 8: * As far as I am concerned, the code I have written for this software
9: * can be used freely for any purpose. Any derived versions of this
10: * software must be clearly marked as such, and if the derived work is
11: * incompatible with the protocol description in the RFC file, it must be
12: * called by a name other than "ssh" or "Secure Shell".
1.25 deraadt 13: */
1.1 deraadt 14:
15: #ifndef SSH_H
16: #define SSH_H
17:
18: /* Cipher used for encrypting authentication files. */
19: #define SSH_AUTHFILE_CIPHER SSH_CIPHER_3DES
20:
21: /* Default port number. */
22: #define SSH_DEFAULT_PORT 22
23:
24: /* Maximum number of TCP/IP ports forwarded per direction. */
25: #define SSH_MAX_FORWARDS_PER_DIRECTION 100
26:
1.26 markus 27: /*
28: * Maximum number of RSA authentication identity files that can be specified
29: * in configuration files or on the command line.
30: */
1.1 deraadt 31: #define SSH_MAX_IDENTITY_FILES 100
1.76 dtucker 32:
33: /*
34: * Maximum length of lines in authorized_keys file.
35: * Current value permits 16kbit RSA and RSA1 keys and 8kbit DSA keys, with
36: * some room for options and comments.
37: */
38: #define SSH_MAX_PUBKEY_BYTES 8192
1.1 deraadt 39:
1.26 markus 40: /*
1.70 deraadt 41: * Major protocol version. Different version indicates major incompatibility
1.26 markus 42: * that prevents communication.
1.37 markus 43: *
1.26 markus 44: * Minor protocol version. Different version indicates minor incompatibility
45: * that does not prevent interoperation.
46: */
1.37 markus 47: #define PROTOCOL_MAJOR_1 1
48: #define PROTOCOL_MINOR_1 5
49:
50: /* We support both SSH1 and SSH2 */
51: #define PROTOCOL_MAJOR_2 2
52: #define PROTOCOL_MINOR_2 0
1.1 deraadt 53:
1.26 markus 54: /*
55: * Name for the service. The port named by this service overrides the
56: * default port if present.
57: */
1.1 deraadt 58: #define SSH_SERVICE_NAME "ssh"
59:
1.26 markus 60: /*
1.71 stevesk 61: * Name of the environment variable containing the process ID of the
62: * authentication agent.
1.26 markus 63: */
1.60 markus 64: #define SSH_AGENTPID_ENV_NAME "SSH_AGENT_PID"
1.15 markus 65:
1.26 markus 66: /*
67: * Name of the environment variable containing the pathname of the
68: * authentication socket.
69: */
1.60 markus 70: #define SSH_AUTHSOCKET_ENV_NAME "SSH_AUTH_SOCK"
1.29 markus 71:
72: /*
1.60 markus 73: * Environment variable for overwriting the default location of askpass
1.29 markus 74: */
75: #define SSH_ASKPASS_ENV "SSH_ASKPASS"
1.1 deraadt 76:
1.26 markus 77: /*
78: * Force host key length and server key length to differ by at least this
79: * many bits. This is to make double encryption with rsaref work.
80: */
1.1 deraadt 81: #define SSH_KEY_BITS_RESERVED 128
82:
1.26 markus 83: /*
84: * Length of the session key in bytes. (Specified as 256 bits in the
85: * protocol.)
86: */
1.1 deraadt 87: #define SSH_SESSION_KEY_LENGTH 32
1.63 stevesk 88:
89: /* Used to identify ``EscapeChar none'' */
90: #define SSH_ESCAPECHAR_NONE -2
1.65 stevesk 91:
92: /*
93: * unprivileged user when UsePrivilegeSeparation=yes;
1.69 stevesk 94: * sshd will change its privileges to this user and its
1.65 stevesk 95: * primary group.
96: */
1.68 deraadt 97: #define SSH_PRIVSEP_USER "sshd"
1.66 stevesk 98:
99: /* Minimum modulus size (n) for RSA keys. */
100: #define SSH_RSA_MINIMUM_MODULUS_SIZE 768
1.75 markus 101:
102: /* Listen backlog for sshd, ssh-agent and forwarding sockets */
103: #define SSH_LISTEN_BACKLOG 128
1.1 deraadt 104:
1.25 deraadt 105: #endif /* SSH_H */