33 enum ssh_audit_event_type {
34 SSH_LOGIN_EXCEED_MAXTRIES,
35 SSH_LOGIN_ROOT_DENIED,
41 SSH_AUTH_FAIL_HOSTBASED,
46 SSH_CONNECTION_ABANDON,
51 SSH_AUDIT_UNSUPPORTED_CIPHER,
52 SSH_AUDIT_UNSUPPORTED_MAC,
53 SSH_AUDIT_UNSUPPORTED_COMPRESSION
55 typedef enum ssh_audit_event_type ssh_audit_event_t;
57 int listening_for_clients(
void);
59 void audit_connection_from(
const char *,
int);
60 void audit_event(
struct ssh *, ssh_audit_event_t);
61 void audit_count_session_open(
void);
62 void audit_session_open(
struct logininfo *);
63 void audit_session_close(
struct logininfo *);
64 int audit_run_command(
struct ssh *,
const char *);
65 void audit_end_command(
struct ssh *,
int,
const char *);
66 ssh_audit_event_t audit_classify_auth(
const char *);
67 int audit_keyusage(
struct ssh *,
int,
char *,
int);
68 void audit_key(
struct ssh *,
int,
int *,
const struct sshkey *);
69 void audit_unsupported(
struct ssh *,
int);
70 void audit_kex(
struct ssh *,
int,
char *,
char *,
char *,
char *);
71 void audit_unsupported_body(
struct ssh *,
int);
72 void audit_kex_body(
struct ssh *,
int,
char *,
char *,
char *,
char *, pid_t, uid_t);
73 void audit_session_key_free(
struct ssh *,
int ctos);
74 void audit_session_key_free_body(
struct ssh *,
int ctos, pid_t, uid_t);
75 void audit_destroy_sensitive_data(
struct ssh *,
const char *, pid_t, uid_t);