1/*	$NetBSD: ssh.h,v 1.3 2010/11/21 18:29:49 adam Exp $	*/
2/* $OpenBSD: ssh.h,v 1.79 2010/06/25 07:14:46 djm Exp $ */
3
4/*
5 * Author: Tatu Ylonen <ylo@cs.hut.fi>
6 * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
7 *                    All rights reserved
8 *
9 * As far as I am concerned, the code I have written for this software
10 * can be used freely for any purpose.  Any derived versions of this
11 * software must be clearly marked as such, and if the derived work is
12 * incompatible with the protocol description in the RFC file, it must be
13 * called by a name other than "ssh" or "Secure Shell".
14 */
15
16/* Cipher used for encrypting authentication files. */
17#define SSH_AUTHFILE_CIPHER	SSH_CIPHER_3DES
18
19/* Default port number. */
20#define SSH_DEFAULT_PORT	22
21
22/*
23 * Maximum number of RSA authentication identity files that can be specified
24 * in configuration files or on the command line.
25 */
26#define SSH_MAX_IDENTITY_FILES		100
27
28/*
29 * Maximum length of lines in authorized_keys file.
30 * Current value permits 16kbit RSA and RSA1 keys and 8kbit DSA keys, with
31 * some room for options and comments.
32 */
33#define SSH_MAX_PUBKEY_BYTES		8192
34
35/*
36 * Major protocol version.  Different version indicates major incompatibility
37 * that prevents communication.
38 *
39 * Minor protocol version.  Different version indicates minor incompatibility
40 * that does not prevent interoperation.
41 */
42#define PROTOCOL_MAJOR_1	1
43#define PROTOCOL_MINOR_1	5
44
45/* We support both SSH1 and SSH2 */
46#define PROTOCOL_MAJOR_2	2
47#define PROTOCOL_MINOR_2	0
48
49/*
50 * Name for the service.  The port named by this service overrides the
51 * default port if present.
52 */
53#define SSH_SERVICE_NAME	"ssh"
54
55/*
56 * Name of the environment variable containing the process ID of the
57 * authentication agent.
58 */
59#define SSH_AGENTPID_ENV_NAME	"SSH_AGENT_PID"
60
61/*
62 * Name of the environment variable containing the pathname of the
63 * authentication socket.
64 */
65#define SSH_AUTHSOCKET_ENV_NAME "SSH_AUTH_SOCK"
66
67/*
68 * Environment variable for overwriting the default location of askpass
69 */
70#define SSH_ASKPASS_ENV		"SSH_ASKPASS"
71
72/*
73 * Force host key length and server key length to differ by at least this
74 * many bits.  This is to make double encryption with rsaref work.
75 */
76#define SSH_KEY_BITS_RESERVED		128
77
78/*
79 * Length of the session key in bytes.  (Specified as 256 bits in the
80 * protocol.)
81 */
82#define SSH_SESSION_KEY_LENGTH		32
83
84/* Used to identify ``EscapeChar none'' */
85#define SSH_ESCAPECHAR_NONE		-2
86
87/* Name of Kerberos service for SSH to use. */
88#define KRB4_SERVICE_NAME		"rcmd"
89
90/*
91 * unprivileged user when UsePrivilegeSeparation=yes;
92 * sshd will change its privileges to this user and its
93 * primary group.
94 */
95#define SSH_PRIVSEP_USER		"sshd"
96
97/* Minimum modulus size (n) for RSA keys. */
98#define SSH_RSA_MINIMUM_MODULUS_SIZE	768
99
100/* Listen backlog for sshd, ssh-agent and forwarding sockets */
101#define SSH_LISTEN_BACKLOG		128
102