Lines Matching +full:int +full:- +full:fwd +full:- +full:mask
19 #include <openbsd-compat/sys-queue.h>
24 #define PERMIT_NOT_SET -1
32 #define PERMITOPEN_NONE -2
42 /* Magic name for internal sftp-server */
43 #define INTERNAL_SFTP_NAME "internal-sftp"
58 int port; /* <=0 if unspecified */
71 int enabled;
72 int max_sources4;
73 int max_sources6;
74 int overflow_mode;
75 int overflow_mode6;
76 int penalty_crash;
77 int penalty_grace;
78 int penalty_authfail;
79 int penalty_noauth;
80 int penalty_refuseconnection;
81 int penalty_max;
82 int penalty_min;
88 int ports[MAX_PORTS]; /* Port number to listen on. */
93 int address_family; /* Address family used by the server. */
98 int *host_key_file_userprovided; /* Key was specified by user. */
103 char *host_key_agent; /* ssh-agent socket for host keys. */
105 char *moduli_file; /* moduli file for DH-GEX */
106 int login_grace_time; /* Disconnect if no auth in this time
108 int permit_root_login; /* PERMIT_*, see above */
109 int ignore_rhosts; /* Ignore .rhosts and .shosts. */
110 int ignore_user_known_hosts; /* Ignore ~/.ssh/known_hosts
112 int print_motd; /* If true, print /etc/motd. */
113 int print_lastlog; /* If true, print lastlog */
114 int x11_forwarding; /* If true, permit inet (spoofing) X11 fwd. */
115 int x11_display_offset; /* What DISPLAY number to start
117 int x11_use_localhost; /* If true, use localhost for fake X11 server. */
119 int permit_tty; /* If false, deny pty allocation */
120 int permit_user_rc; /* If false, deny ~/.ssh/rc execution */
121 int strict_modes; /* If true, require string home dir modes. */
122 int tcp_keep_alive; /* If true, set SO_KEEPALIVE. */
123 int ip_qos_interactive; /* IP ToS/DSCP/class for interactive */
124 int ip_qos_bulk; /* IP ToS/DSCP/class for bulk traffic */
133 int hostbased_authentication; /* If true, permit ssh2 hostbased auth */
134 int hostbased_uses_name_from_packet_only; /* experimental */
138 int pubkey_authentication; /* If true, permit ssh2 pubkey authentication. */
140 int pubkey_auth_options; /* -1 or mask of PUBKEYAUTH_* flags */
141 int kerberos_authentication; /* If true, permit Kerberos
143 int kerberos_or_local_passwd; /* If true, permit kerberos
148 int kerberos_ticket_cleanup; /* If true, destroy ticket
150 int kerberos_get_afs_token; /* If true, try to get AFS token if
152 int gss_authentication; /* If true, permit GSSAPI authentication */
153 int gss_cleanup_creds; /* If true, destroy cred cache on logout */
154 int gss_strict_acceptor; /* If true, restrict the GSSAPI acceptor name */
155 int password_authentication; /* If true, permit password
157 int kbd_interactive_authentication; /* If true, permit */
158 int permit_empty_passwd; /* If false, do not permit empty
160 int permit_user_env; /* If true, read ~/.ssh/environment */
161 char *permit_user_env_allowlist; /* pattern-list of allowed env names */
162 int compression; /* If true, compression is allowed */
163 int allow_tcp_forwarding; /* One of FORWARD_* */
164 int allow_streamlocal_forwarding; /* One of FORWARD_* */
165 int allow_agent_forwarding;
166 int disable_forwarding;
186 int max_startups_begin;
187 int max_startups_rate;
188 int max_startups;
189 int per_source_max_startups;
190 int per_source_masklen_ipv4;
191 int per_source_masklen_ipv6;
194 int max_authtries;
195 int max_sessions;
196 char *banner; /* SSH-2 banner message */
197 int use_dns;
198 int client_alive_interval; /*
202 int client_alive_count_max; /*
213 int use_pam; /* Enable auth via PAM */
216 int permit_tun;
233 int rekey_interval;
240 int fingerprint_hash;
241 int expose_userauth_info;
244 int required_rsa_size; /* minimum size of RSA keys */
249 int unused_connection_timeout;
253 int refuse_connection;
255 int use_blacklist;
261 int user_invalid;
265 int lport; /* local port */
267 int test; /* test mode, allow some attributes to be
271 /* List of included files for re-exec from the parsed configuration */
283 * Match sub-config and the main config, and must be sent from the
324 int process_server_config_line(ServerOptions *, char *, const char *, int,
325 int *, struct connection_info *, struct include_list *includes);
328 struct include_list *includes, struct connection_info *, int);
331 int parse_server_match_testspec(struct connection_info *, char *);
333 void copy_set_server_options(ServerOptions *, ServerOptions *, int);
336 void servconf_add_hostkey(const char *, const int,
337 ServerOptions *, const char *path, int);
338 void servconf_add_hostcert(const char *, const int,