servconf.h revision 60576
1/* 2 * 3 * servconf.h 4 * 5 * Author: Tatu Ylonen <ylo@cs.hut.fi> 6 * 7 * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland 8 * All rights reserved 9 * 10 * Created: Mon Aug 21 15:35:03 1995 ylo 11 * 12 * Definitions for server configuration data and for the functions reading it. 13 * 14 * $FreeBSD: head/crypto/openssh/servconf.h 60576 2000-05-15 05:24:25Z kris $ 15 */ 16 17/* RCSID("$Id: servconf.h,v 1.22 2000/05/06 17:45:37 markus Exp $"); */ 18 19#ifndef SERVCONF_H 20#define SERVCONF_H 21 22#define MAX_PORTS 256 /* Max # ports. */ 23 24#define MAX_ALLOW_USERS 256 /* Max # users on allow list. */ 25#define MAX_DENY_USERS 256 /* Max # users on deny list. */ 26#define MAX_ALLOW_GROUPS 256 /* Max # groups on allow list. */ 27#define MAX_DENY_GROUPS 256 /* Max # groups on deny list. */ 28 29typedef struct { 30 unsigned int num_ports; 31 unsigned int ports_from_cmdline; 32 u_short ports[MAX_PORTS]; /* Port number to listen on. */ 33 char *listen_addr; /* Address on which the server listens. */ 34 struct addrinfo *listen_addrs; /* Addresses on which the server listens. */ 35 char *host_key_file; /* File containing host key. */ 36 char *host_dsa_key_file; /* File containing dsa host key. */ 37 char *pid_file; /* Where to put our pid */ 38 int server_key_bits;/* Size of the server key. */ 39 int login_grace_time; /* Disconnect if no auth in this time 40 * (sec). */ 41 int key_regeneration_time; /* Server key lifetime (seconds). */ 42 int permit_root_login; /* If true, permit root login. */ 43 int ignore_rhosts; /* Ignore .rhosts and .shosts. */ 44 int ignore_user_known_hosts; /* Ignore ~/.ssh/known_hosts 45 * for RhostsRsaAuth */ 46 int print_motd; /* If true, print /etc/motd. */ 47 int check_mail; /* If true, check for new mail. */ 48 int x11_forwarding; /* If true, permit inet (spoofing) X11 fwd. */ 49 int x11_display_offset; /* What DISPLAY number to start 50 * searching at */ 51 int strict_modes; /* If true, require string home dir modes. */ 52 int keepalives; /* If true, set SO_KEEPALIVE. */ 53 char *ciphers; /* Ciphers in order of preference. */ 54 int protocol; /* Protocol in order of preference. */ 55 int gateway_ports; /* If true, allow remote connects to forwarded ports. */ 56 SyslogFacility log_facility; /* Facility for system logging. */ 57 LogLevel log_level; /* Level for system logging. */ 58 int rhosts_authentication; /* If true, permit rhosts 59 * authentication. */ 60 int rhosts_rsa_authentication; /* If true, permit rhosts RSA 61 * authentication. */ 62 int rsa_authentication; /* If true, permit RSA authentication. */ 63 int dsa_authentication; /* If true, permit DSA authentication. */ 64#ifdef KRB4 65 int krb4_authentication; /* If true, permit Kerberos v4 66 * authentication. */ 67 int krb4_or_local_passwd; /* If true, permit kerberos v4 68 * and any other password 69 * authentication mechanism, 70 * such as SecurID or 71 * /etc/passwd */ 72 int krb4_ticket_cleanup; /* If true, destroy ticket 73 * file on logout. */ 74#endif 75#ifdef KRB5 76 int krb5_authentication; 77 int krb5_tgt_passing; 78 79#endif /* KRB5 */ 80#ifdef AFS 81 int krb4_tgt_passing; /* If true, permit Kerberos v4 tgt 82 * passing. */ 83 int afs_token_passing; /* If true, permit AFS token passing. */ 84#endif 85 int password_authentication; /* If true, permit password 86 * authentication. */ 87#ifdef SKEY 88 int skey_authentication; /* If true, permit s/key 89 * authentication. */ 90#endif 91 int permit_empty_passwd; /* If false, do not permit empty 92 * passwords. */ 93 int use_login; /* If true, login(1) is used */ 94 unsigned int num_allow_users; 95 char *allow_users[MAX_ALLOW_USERS]; 96 unsigned int num_deny_users; 97 char *deny_users[MAX_DENY_USERS]; 98 unsigned int num_allow_groups; 99 char *allow_groups[MAX_ALLOW_GROUPS]; 100 unsigned int num_deny_groups; 101 char *deny_groups[MAX_DENY_GROUPS]; 102 unsigned int connections_per_period; /* 103 * If not 0, number of sshd 104 * connections accepted per 105 * connections_period. 106 */ 107 unsigned int connections_period; 108} ServerOptions; 109/* 110 * Initializes the server options to special values that indicate that they 111 * have not yet been set. 112 */ 113void initialize_server_options(ServerOptions * options); 114 115/* 116 * Reads the server configuration file. This only sets the values for those 117 * options that have the special value indicating they have not been set. 118 */ 119void read_server_config(ServerOptions * options, const char *filename); 120 121/* Sets values for those values that have not yet been set. */ 122void fill_default_server_options(ServerOptions * options); 123 124#endif /* SERVCONF_H */ 125