Annotation of src/usr.bin/ssh/ssh.h, Revision 1.80
1.80 ! djm 1: /* $OpenBSD: ssh.h,v 1.79 2010/06/25 07:14:46 djm Exp $ */
1.64 stevesk 2:
1.1 deraadt 3: /*
1.25 deraadt 4: * Author: Tatu Ylonen <ylo@cs.hut.fi>
5: * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
6: * All rights reserved
1.38 markus 7: *
1.50 deraadt 8: * As far as I am concerned, the code I have written for this software
9: * can be used freely for any purpose. Any derived versions of this
10: * software must be clearly marked as such, and if the derived work is
11: * incompatible with the protocol description in the RFC file, it must be
12: * called by a name other than "ssh" or "Secure Shell".
1.25 deraadt 13: */
1.1 deraadt 14:
15: /* Cipher used for encrypting authentication files. */
16: #define SSH_AUTHFILE_CIPHER SSH_CIPHER_3DES
17:
18: /* Default port number. */
19: #define SSH_DEFAULT_PORT 22
20:
1.26 markus 21: /*
22: * Maximum number of RSA authentication identity files that can be specified
23: * in configuration files or on the command line.
24: */
1.1 deraadt 25: #define SSH_MAX_IDENTITY_FILES 100
1.76 dtucker 26:
27: /*
28: * Maximum length of lines in authorized_keys file.
29: * Current value permits 16kbit RSA and RSA1 keys and 8kbit DSA keys, with
30: * some room for options and comments.
31: */
32: #define SSH_MAX_PUBKEY_BYTES 8192
1.1 deraadt 33:
1.26 markus 34: /*
1.70 deraadt 35: * Major protocol version. Different version indicates major incompatibility
1.26 markus 36: * that prevents communication.
1.37 markus 37: *
1.26 markus 38: * Minor protocol version. Different version indicates minor incompatibility
39: * that does not prevent interoperation.
40: */
1.37 markus 41: #define PROTOCOL_MAJOR_1 1
42: #define PROTOCOL_MINOR_1 5
43:
44: /* We support both SSH1 and SSH2 */
45: #define PROTOCOL_MAJOR_2 2
46: #define PROTOCOL_MINOR_2 0
1.1 deraadt 47:
1.26 markus 48: /*
49: * Name for the service. The port named by this service overrides the
50: * default port if present.
51: */
1.1 deraadt 52: #define SSH_SERVICE_NAME "ssh"
53:
1.26 markus 54: /*
1.71 stevesk 55: * Name of the environment variable containing the process ID of the
56: * authentication agent.
1.26 markus 57: */
1.60 markus 58: #define SSH_AGENTPID_ENV_NAME "SSH_AGENT_PID"
1.15 markus 59:
1.26 markus 60: /*
61: * Name of the environment variable containing the pathname of the
62: * authentication socket.
63: */
1.60 markus 64: #define SSH_AUTHSOCKET_ENV_NAME "SSH_AUTH_SOCK"
1.29 markus 65:
66: /*
1.60 markus 67: * Environment variable for overwriting the default location of askpass
1.29 markus 68: */
69: #define SSH_ASKPASS_ENV "SSH_ASKPASS"
1.1 deraadt 70:
1.26 markus 71: /*
72: * Force host key length and server key length to differ by at least this
73: * many bits. This is to make double encryption with rsaref work.
74: */
1.1 deraadt 75: #define SSH_KEY_BITS_RESERVED 128
76:
1.26 markus 77: /*
78: * Length of the session key in bytes. (Specified as 256 bits in the
79: * protocol.)
80: */
1.1 deraadt 81: #define SSH_SESSION_KEY_LENGTH 32
1.63 stevesk 82:
83: /* Used to identify ``EscapeChar none'' */
84: #define SSH_ESCAPECHAR_NONE -2
1.65 stevesk 85:
86: /*
87: * unprivileged user when UsePrivilegeSeparation=yes;
1.69 stevesk 88: * sshd will change its privileges to this user and its
1.65 stevesk 89: * primary group.
90: */
1.68 deraadt 91: #define SSH_PRIVSEP_USER "sshd"
1.66 stevesk 92:
93: /* Minimum modulus size (n) for RSA keys. */
1.80 ! djm 94: #define SSH_RSA_MINIMUM_MODULUS_SIZE 1024
1.75 markus 95:
96: /* Listen backlog for sshd, ssh-agent and forwarding sockets */
97: #define SSH_LISTEN_BACKLOG 128