1/* $OpenBSD: ssh.h,v 1.79 2010/06/25 07:14:46 djm Exp $ */ 2 3/* 4 * Author: Tatu Ylonen <ylo@cs.hut.fi> 5 * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland 6 * All rights reserved 7 * 8 * As far as I am concerned, the code I have written for this software 9 * can be used freely for any purpose. Any derived versions of this 10 * software must be clearly marked as such, and if the derived work is 11 * incompatible with the protocol description in the RFC file, it must be 12 * called by a name other than "ssh" or "Secure Shell". 13 */ 14 15/* Cipher used for encrypting authentication files. */ 16#define SSH_AUTHFILE_CIPHER SSH_CIPHER_3DES 17 18/* Default port number. */ 19#define SSH_DEFAULT_PORT 22 20 21/* 22 * Maximum number of RSA authentication identity files that can be specified 23 * in configuration files or on the command line. 24 */ 25#define SSH_MAX_IDENTITY_FILES 100 26 27/* 28 * Maximum length of lines in authorized_keys file. 29 * Current value permits 16kbit RSA and RSA1 keys and 8kbit DSA keys, with 30 * some room for options and comments. 31 */ 32#define SSH_MAX_PUBKEY_BYTES 8192 33 34/* 35 * Major protocol version. Different version indicates major incompatibility 36 * that prevents communication. 37 * 38 * Minor protocol version. Different version indicates minor incompatibility 39 * that does not prevent interoperation. 40 */ 41#define PROTOCOL_MAJOR_1 1 42#define PROTOCOL_MINOR_1 5 43 44/* We support both SSH1 and SSH2 */ 45#define PROTOCOL_MAJOR_2 2 46#define PROTOCOL_MINOR_2 0 47 48/* 49 * Name for the service. The port named by this service overrides the 50 * default port if present. 51 */ 52#define SSH_SERVICE_NAME "ssh" 53 54/* 55 * Name of the environment variable containing the process ID of the 56 * authentication agent. 57 */ 58#define SSH_AGENTPID_ENV_NAME "SSH_AGENT_PID" 59 60/* 61 * Name of the environment variable containing the pathname of the 62 * authentication socket. 63 */ 64#define SSH_AUTHSOCKET_ENV_NAME "SSH_AUTH_SOCK" 65 66/* 67 * Environment variable for overwriting the default location of askpass 68 */ 69#define SSH_ASKPASS_ENV "SSH_ASKPASS" 70 71/* 72 * Force host key length and server key length to differ by at least this 73 * many bits. This is to make double encryption with rsaref work. 74 */ 75#define SSH_KEY_BITS_RESERVED 128 76 77/* 78 * Length of the session key in bytes. (Specified as 256 bits in the 79 * protocol.) 80 */ 81#define SSH_SESSION_KEY_LENGTH 32 82 83/* Used to identify ``EscapeChar none'' */ 84#define SSH_ESCAPECHAR_NONE -2 85 86/* 87 * unprivileged user when UsePrivilegeSeparation=yes; 88 * sshd will change its privileges to this user and its 89 * primary group. 90 */ 91#ifndef SSH_PRIVSEP_USER 92#define SSH_PRIVSEP_USER "sshd" 93#endif 94 95/* Minimum modulus size (n) for RSA keys. */ 96#define SSH_RSA_MINIMUM_MODULUS_SIZE 768 97 98/* Listen backlog for sshd, ssh-agent and forwarding sockets */ 99#define SSH_LISTEN_BACKLOG 128 100