servconf.h revision 57430
1/* 2 * 3 * servconf.h 4 * 5 * Author: Tatu Ylonen <ylo@cs.hut.fi> 6 * 7 * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland 8 * All rights reserved 9 * 10 * Created: Mon Aug 21 15:35:03 1995 ylo 11 * 12 * Definitions for server configuration data and for the functions reading it. 13 * 14 */ 15 16/* RCSID("$Id: servconf.h,v 1.15 2000/01/04 00:08:00 markus Exp $"); */ 17 18#ifndef SERVCONF_H 19#define SERVCONF_H 20 21#define MAX_PORTS 256 /* Max # ports. */ 22 23#define MAX_ALLOW_USERS 256 /* Max # users on allow list. */ 24#define MAX_DENY_USERS 256 /* Max # users on deny list. */ 25#define MAX_ALLOW_GROUPS 256 /* Max # groups on allow list. */ 26#define MAX_DENY_GROUPS 256 /* Max # groups on deny list. */ 27 28typedef struct { 29 unsigned int num_ports; 30 unsigned int ports_from_cmdline; 31 u_short ports[MAX_PORTS]; /* Port number to listen on. */ 32 char *listen_addr; /* Address on which the server listens. */ 33 struct addrinfo *listen_addrs; /* Addresses on which the server listens. */ 34 char *host_key_file; /* File containing host key. */ 35 int server_key_bits;/* Size of the server key. */ 36 int login_grace_time; /* Disconnect if no auth in this time 37 * (sec). */ 38 int key_regeneration_time; /* Server key lifetime (seconds). */ 39 int permit_root_login; /* If true, permit root login. */ 40 int ignore_rhosts; /* Ignore .rhosts and .shosts. */ 41 int ignore_user_known_hosts; /* Ignore ~/.ssh/known_hosts 42 * for RhostsRsaAuth */ 43 int print_motd; /* If true, print /etc/motd. */ 44 int check_mail; /* If true, check for new mail. */ 45 int x11_forwarding; /* If true, permit inet (spoofing) X11 fwd. */ 46 int x11_display_offset; /* What DISPLAY number to start 47 * searching at */ 48 int strict_modes; /* If true, require string home dir modes. */ 49 int keepalives; /* If true, set SO_KEEPALIVE. */ 50 SyslogFacility log_facility; /* Facility for system logging. */ 51 LogLevel log_level; /* Level for system logging. */ 52 int rhosts_authentication; /* If true, permit rhosts 53 * authentication. */ 54 int rhosts_rsa_authentication; /* If true, permit rhosts RSA 55 * authentication. */ 56 int rsa_authentication; /* If true, permit RSA authentication. */ 57#ifdef KRB4 58 int kerberos_authentication; /* If true, permit Kerberos 59 * authentication. */ 60 int kerberos_or_local_passwd; /* If true, permit kerberos 61 * and any other password 62 * authentication mechanism, 63 * such as SecurID or 64 * /etc/passwd */ 65 int kerberos_ticket_cleanup; /* If true, destroy ticket 66 * file on logout. */ 67#endif 68#ifdef AFS 69 int kerberos_tgt_passing; /* If true, permit Kerberos tgt 70 * passing. */ 71 int afs_token_passing; /* If true, permit AFS token passing. */ 72#endif 73 int password_authentication; /* If true, permit password 74 * authentication. */ 75#ifdef SKEY 76 int skey_authentication; /* If true, permit s/key 77 * authentication. */ 78#endif 79 int permit_empty_passwd; /* If false, do not permit empty 80 * passwords. */ 81 int use_login; /* If true, login(1) is used */ 82 unsigned int num_allow_users; 83 char *allow_users[MAX_ALLOW_USERS]; 84 unsigned int num_deny_users; 85 char *deny_users[MAX_DENY_USERS]; 86 unsigned int num_allow_groups; 87 char *allow_groups[MAX_ALLOW_GROUPS]; 88 unsigned int num_deny_groups; 89 char *deny_groups[MAX_DENY_GROUPS]; 90} ServerOptions; 91/* 92 * Initializes the server options to special values that indicate that they 93 * have not yet been set. 94 */ 95void initialize_server_options(ServerOptions * options); 96 97/* 98 * Reads the server configuration file. This only sets the values for those 99 * options that have the special value indicating they have not been set. 100 */ 101void read_server_config(ServerOptions * options, const char *filename); 102 103/* Sets values for those values that have not yet been set. */ 104void fill_default_server_options(ServerOptions * options); 105 106#endif /* SERVCONF_H */ 107