[jboss-cvs] JBossAS SVN: r89982 - projects/docs/enterprise/4.3.3/Server_Configuration_Guide/zh-CN.

jboss-cvs-commits at lists.jboss.org jboss-cvs-commits at lists.jboss.org
Tue Jun 9 02:02:30 EDT 2009 

Author: xhuang at jboss.com
Date: 2009-06-09 02:02:30 -0400 (Tue, 09 Jun 2009)
New Revision: 89982

Modified:
   projects/docs/enterprise/4.3.3/Server_Configuration_Guide/zh-CN/J2EE_Security_On_JBOSS.po
Log:
udpate

Modified: projects/docs/enterprise/4.3.3/Server_Configuration_Guide/zh-CN/J2EE_Security_On_JBOSS.po
===================================================================
--- projects/docs/enterprise/4.3.3/Server_Configuration_Guide/zh-CN/J2EE_Security_On_JBOSS.po	2009-06-09 06:00:31 UTC (rev 89981)
+++ projects/docs/enterprise/4.3.3/Server_Configuration_Guide/zh-CN/J2EE_Security_On_JBOSS.po	2009-06-09 06:02:30 UTC (rev 89982)
@@ -9,8 +9,8 @@
 "Project-Id-Version: J2EE_Security_On_JBOSS\n"
 "Report-Msgid-Bugs-To: http://bugs.kde.org\n"
 "POT-Creation-Date: 2009-01-20 02:37+0000\n"
-"PO-Revision-Date: 2009-06-05 14:40+1000\n"
-"Last-Translator: Xi HUANG\n"
+"PO-Revision-Date: 2009-06-09 15:17+1000\n"
+"Last-Translator: Xi HUANG <xhuang at redhat.com>\n"
 "Language-Team:  <en at li.org>\n"
 "MIME-Version: 1.0\n"
 "Content-Type: text/plain; charset=UTF-8\n"
@@ -6163,7 +6163,7 @@
 #: J2EE_Security_On_JBOSS.xml:1488
 #, no-c-format
 msgid "The Secure Remote Password (SRP) Protocol"
-msgstr ""
+msgstr "SRP(Secure Remote Password)协议"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1489
@@ -6172,7 +6172,7 @@
 "The SRP protocol is an implementation of a public key exchange handshake "
 "described in the Internet standards working group request for comments 2945"
 "(RFC2945). The RFC2945 abstract states:"
-msgstr ""
+msgstr "SRP 协议是对关于 RFC2945 标准里描述的公共密钥交换握手协议的实现。RFC2945 表明:"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1492
@@ -6189,7 +6189,7 @@
 "required to store or manage any long-term keys. SRP offers both security and "
 "deployment advantages over existing challenge-response techniques, making it "
 "an ideal drop-in replacement where secure password authentication is needed."
-msgstr ""
+msgstr "这个文档描述了一个强加密的网络验证机制,就是 SRP(Secure Remote Password)协议。这个机制适合于使用用户提供的密码协商安全连接,从而消除了传统的可重用密码的安全隐患。这个系统也在验证过程中执行安全密钥交换,允许在会话中启用安全层(隐私和/或完整性保护)。它不要求信任的密钥服务器和证书结构,也不要求客户存储或管理任何长期的密钥。相对现有的 challenge-response 技术,SRP 提供了安全性和部署优势,当需要安全密码验证时,它是一个理想的替代方案。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1495
@@ -6200,6 +6200,9 @@
 "the SRP algorithm and its history can be found at <ulink url=\"http://www-cs-"
 "students.stanford.edu/~tjw/srp/\"></ulink>."
 msgstr ""
+"请注意:你可以从 <ulink url="
+"\"http://www.rfc-editor.org/rfc.html\"></ulink> 获得完整的 RFC2945 规格。SRP 算法的其他信息及其历史可以在 <ulink url=\"http://www-cs-"
+"students.stanford.edu/~tjw/srp/\"></ulink> 里找到。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1498
@@ -6211,7 +6214,7 @@
 "the server. This is in contrast to other public key-based algorithms that "
 "require client certificates and the corresponding certificate management "
 "infrastructure."
-msgstr ""
+msgstr "SRP 从概念和安全性上来说和其他公共密钥交换算法类似,如 Diffie-Hellman 和 RSA。SRP 基于简单的字符串密码,它不需要在服务器上存放明文密码。这和需要客户端证书和对应的证书管理基础结构的其他基于密钥的算法是相反的。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1501
@@ -6226,7 +6229,7 @@
 "traditional shared password based encryption schemes that require the sender "
 "and receiver to know the shared password. Public key algorithms eliminate "
 "the need to share passwords."
-msgstr ""
+msgstr "Diffie-Hellman 和 RSA 等算法通称为公共密钥交换算法。公共密钥算法的概念是你有两个密钥,其中一个对于所有人都是公开的,另外一个则是私有的且只有你自己知道。当某人希望给你发送加密的信息时,他会使用公共密钥进行加密。只有你才能用私有密钥对这些信息进行解密。它和更传统的基于共享密码的加密模式相反,那需要发送者和接收者的都知道共享的密码。公共密钥算法消除了对共享密码的需要。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1504
@@ -6234,7 +6237,7 @@
 msgid ""
 "The JBossSX framework includes an implementation of SRP that consists of the "
 "following elements:"
-msgstr ""
+msgstr "JBossSX 框架包括了一个 SRP 的实现,它由下列元素组成:"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1509
@@ -6242,7 +6245,7 @@
 msgid ""
 "An implementation of the SRP handshake protocol that is independent of any "
 "particular client/server protocol"
-msgstr ""
+msgstr "独立于任何客户/服务器协议的 SRP 握手协议的实现"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1514
@@ -6250,7 +6253,7 @@
 msgid ""
 "An RMI implementation of the handshake protocol as the default client/server "
 "SRP implementation"
-msgstr ""
+msgstr "作为缺省客户/服务器 SRP 实现的握手协议的 RMI 实现"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1519
@@ -6258,7 +6261,7 @@
 msgid ""
 "A client side JAAS <literal>LoginModule</literal> implementation that uses "
 "the RMI implementation for use in authenticating clients in a secure fashion"
-msgstr ""
+msgstr "使用 RMI 实现以安全方式验证客户的客户端的 JAAS <literal>LoginModule</literal> 实现"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1524
@@ -6269,7 +6272,7 @@
 "externalizes the configuration of the verification information store. It "
 "also establishes an authentication cache that is bound into the JBoss server "
 "JNDI namespace."
-msgstr ""
+msgstr "管理 RMI 服务器实现的 JMX MBean。这个 MBean 允许 RMI 服务器实现插入到 JMX 框架里并扩展了验证信息库的配置。它也建立了一个绑定在 JBoss 服务器的 JNDI 命名空间里的验证缓存。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1529
@@ -6277,7 +6280,7 @@
 msgid ""
 "A server side JAAS <literal>LoginModule</literal> implementation that uses "
 "the authentication cache managed by the SRP JMX MBean."
-msgstr ""
+msgstr "使用 SRP JMX MBean 管理的验证缓存的服务器端的 JAAS <literal>LoginModule</literal> 实现。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1534
@@ -6285,13 +6288,13 @@
 msgid ""
 "gives a diagram of the key components involved in the JBossSX implementation "
 "of the SRP client/server framework."
-msgstr ""
+msgstr "给出了 SRP 客户/服务器框架的 JBossSX 实现里涉及的密钥组件的图表。"
 
 #. Tag: title
 #: J2EE_Security_On_JBOSS.xml:1538
 #, no-c-format
 msgid "The JBossSX components of the SRP client-server framework."
-msgstr ""
+msgstr "SRP 客户-服务器框架的 JBossSX 组件。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1545
@@ -6305,18 +6308,20 @@
 "SRPLoginModule</literal>. This module supports the following configuration "
 "options:"
 msgstr ""
+"在客户端,SRP 显示了一个自定义的 JAAS <literal>LoginModule</"
+"literal> 实现,它通过 <literal>org.jboss.security.srp.SRPServerInterface</literal> 代理和验证服务器进行通讯。客户通过创建包含 <literal>org.jboss.security.srp.jaas."
+"SRPLoginModule</literal> 的登录配置条目启用 SRP 验证。这个模块支持下列的配置选项:"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1550
-#, fuzzy, no-c-format
+#, no-c-format
 msgid ""
 "<emphasis role=\"bold\">principalClassName</emphasis>: This option is no "
 "longer supported. The principal class is now always <literal>org.jboss."
 "security.srp.jaas.SRPPrincipal</literal>."
 msgstr ""
-"<emphasis role=\"bold\">SecurityMangerService</emphasis>:这是一个关于 "
-"Tomcat 使用的 JAASsecurity manager 的引用。它的缺省值是 <literal>jboss."
-"security:service=JaasSecurityManager</literal>。"
+"<emphasis role=\"bold\">principalClassName</emphasis>:这个选项不再被支持。principal 类现在变成了 <literal>org.jboss."
+"security.srp.jaas.SRPPrincipal</literal>。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1555
@@ -6329,18 +6334,17 @@
 "<literal>srpServerJndiName</literal> is tried before "
 "<literal>srpServerRmiUrl</literal>."
 msgstr ""
+"<emphasis role=\"bold\">srpServerJndiName</emphasis>:用于和 SRP 验证服务器通讯的 <literal>SRPServerInterface</literal> 对象的 JNDI 名称。如果 <literal>srpServerJndiName</literal> "
+"和 <literal>srpServerRmiUrl</literal> 都被指定,<literal>srpServerJndiName</literal> 将在 <literal>srpServerRmiUrl</literal> 之前被尝试。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1560
-#, fuzzy, no-c-format
+#, no-c-format
 msgid ""
 "<emphasis role=\"bold\">srpServerRmiUrl</emphasis>: The RMI protocol URL "
 "string for the location of the <literal>SRPServerInterface</literal> proxy "
 "to use for communicating with the SRP authentication server."
-msgstr ""
-"<emphasis role=\"bold\">Port</emphasis>:<literal>NamingService</literal> 的 "
-"JNP 协议侦听端口。如果没有指定,它的缺省值为 1099,和 RMI registry 的缺省端口"
-"相同。"
+msgstr "<emphasis role=\"bold\">srpServerRmiUrl</emphasis>:用于和 SRP 验证服务器通讯的 <literal>SRPServerInterface</literal> 代理的位置的 RMI 协议 URL 字符串。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1565
@@ -6350,7 +6354,7 @@
 "indicating if the random component of the client public key A should come "
 "from the user callback. This can be used to input a strong cryptographic "
 "random number coming from a hardware token for example."
-msgstr ""
+msgstr "<emphasis role=\"bold\">externalRandomA</emphasis>:true/false 标记,表示是否从用户的回调方法里获取客户公共密钥的随机组件。这可用于输入强加密的随机数字,如硬件令牌产生的数字。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1570
@@ -6363,6 +6367,8 @@
 "private key and the challenge object sent as a <literal>javax.crypto."
 "SealedObject</literal>."
 msgstr ""
+"<emphasis role=\"bold\">hasAuxChallenge</emphasis>:true/false 标记,表示是否把字符串作为额外的 challenge 发送到服务器发进行验证。如果客户会话支持加密密码,那临时的密码将用会话的私有密钥进行创建并以 <literal>javax.crypto."
+"SealedObject</literal> 发送 challenge 对象。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1575
@@ -6371,7 +6377,7 @@
 "<emphasis role=\"bold\">multipleSessions</emphasis>: a true/false flag "
 "indicating if a given client may have multiple SRP login sessions active "
 "simultaneously."
-msgstr ""
+msgstr "<emphasis role=\"bold\">multipleSessions</emphasis>:true/false 标记,指出给定客户是否同时具有多个活动的 SRP 登录会话。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1580
@@ -6383,6 +6389,8 @@
 "server interface is not available from the default <literal>InitialContext</"
 "literal>."
 msgstr ""
+"任不符合前面的命名选的任何其他选项都被当作 JNDI 属性且传入 <literal>InitialContext</literal> 构造器。如果通过缺省的 <literal>InitialContext</"
+"literal> 使用 SRP 服务器接口的话,这就很有用。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1583
@@ -6393,7 +6401,7 @@
 "authentication credentials to be used for validation of access to security "
 "J2EE components. An example login configuration entry that demonstrates such "
 "a setup is:"
-msgstr ""
+msgstr "<literal>SRPLoginModule</literal> 需要和标准的 <literal>ClientLoginModule</literal> 一起配置来允许对安全性 J2EE 组件访问使用 SRP 验证 credential。"
 
 #. Tag: programlisting
 #: J2EE_Security_On_JBOSS.xml:1586
@@ -6409,6 +6417,15 @@
 "    ;\n"
 "};"
 msgstr ""
+"srp {\n"
+"    org.jboss.security.srp.jaas.SRPLoginModule required\n"
+"    srpServerJndiName=\"SRPServerInterface\"\n"
+"    ;\n"
+"            \n"
+"    org.jboss.security.ClientLoginModule required\n"
+"    password-stacking=\"useFirstPass\"\n"
+"    ;\n"
+"};"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1587
@@ -6421,6 +6438,9 @@
 "updating the SRP authentication session cache. The configurable SRPService "
 "MBean attributes include the following:"
 msgstr ""
+"在 JBoss 的服务器端有两个管理组成 SRP 服务器的对象的 MBean。主要的服务是 <literal>org."
+"jboss.security.srp.SRPService</literal> MBean,它负责开放 SRPServerInterface 的 RMI 版本并更新 SRP 验证会话缓存。可配置的 SRPService "
+"MBean 属性包括:"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1592
@@ -6431,20 +6451,19 @@
 "<literal>SRPService</literal> binds the serializable dynamic proxy to the "
 "<literal>SRPServerInterface</literal>. If not specified it defaults to "
 "<literal>srp/SRPServerInterface</literal>."
-msgstr ""
+msgstr "<emphasis role=\"bold\">JndiName</emphasis>:SRPServerInterface 代理所在的 JNDI 名称。这是 <literal>SRPService</literal> 把可序列化动态代理绑定到 <literal>SRPServerInterface</literal> 里的位置。如果没有指定,其缺省值为 <literal>srp/SRPServerInterface</literal>。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1597
-#, fuzzy, no-c-format
+#, no-c-format
 msgid ""
 "<emphasis role=\"bold\">VerifierSourceJndiName</emphasis>: The JNDI name of "
 "the <literal>SRPVerifierSource</literal> implementation that should be used "
 "by the <literal>SRPService</literal>. If not set it defaults to <literal>srp/"
 "DefaultVerifierSource</literal>."
 msgstr ""
-"<emphasis role=\"bold\">className</emphasis>:这是 <literal>org.apache."
-"catalina.Host</literal> 接口实现的类的全名。它的缺省值是 <literal>org.apache."
-"catalina.core.StandardHost</literal>。"
+"<emphasis role=\"bold\">VerifierSourceJndiName</emphasis>:<literal>SRPService</literal> 应该使用的 <literal>SRPVerifierSource</literal> 实现的 JNDI 名称。缺省值为 <literal>srp/"
+"DefaultVerifierSource</literal>。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1602
@@ -6456,22 +6475,23 @@
 "bound. The SRP session cache is made available for use through this binding. "
 "If not specified it defaults to <literal>srp/AuthenticationCache</literal>."
 msgstr ""
+"<emphasis role=\"bold\">AuthenticationCacheJndiName</emphasis>:用于缓存验证信息的 <literal>org.jboss.util.CachePolicy</"
+"literal> 实现被绑定的 JNDI 名称。SRP 会话缓存通过这个绑定来被使用。如果没有指定,其缺省值是 <literal>srp/AuthenticationCache</literal>。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1607
-#, fuzzy, no-c-format
+#, no-c-format
 msgid ""
 "<emphasis role=\"bold\">ServerPort</emphasis>: RMI port for the "
 "<literal>SRPRemoteServerInterface</literal>. If not specified it defaults to "
 "10099."
 msgstr ""
-"<emphasis role=\"bold\">Port</emphasis>:<literal>NamingService</literal> 的 "
-"JNP 协议侦听端口。如果没有指定,它的缺省值为 1099,和 RMI registry 的缺省端口"
-"相同。"
+"<emphasis role=\"bold\">ServerPort</emphasis>:<literal>SRPRemoteServerInterface</literal> 的 RMI 端口。如果没有指定,其缺省值是 "
+"10099。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1612
-#, fuzzy, no-c-format
+#, no-c-format
 msgid ""
 "<emphasis role=\"bold\">ClientSocketFactory</emphasis>: An optional custom "
 "<literal>java.rmi.server.RMIClientSocketFactory</literal> implementation "
@@ -6480,12 +6500,13 @@
 "literal> is used."
 msgstr ""
 "<emphasis role=\"bold\">ClientSocketFactory</emphasis>:可选的自定义 "
-"<literal>java.rmi.server.RMIClientSocketFactory</literal> 实现的类名。如果它"
+"<literal>java.rmi.server.RMIClientSocketFactory</literal> 实现的类名,它在 <literal>SRPServerInterface</"
+"literal> 的导出过程中被使用。如果它"
 "没有指定,将使用缺省的 <literal>RMIClientSocketFactory</literal>。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1617
-#, fuzzy, no-c-format
+#, no-c-format
 msgid ""
 "<emphasis role=\"bold\">ServerSocketFactory</emphasis>: An optional custom "
 "<literal>java.rmi.server.RMIServerSocketFactory</literal> implementation "
@@ -6493,20 +6514,19 @@
 "literal>. If not specified the default <literal>RMIServerSocketFactory</"
 "literal> is used."
 msgstr ""
-"<literal>RMIClientSocketFactory</literal>:可选的自定义 <literal>java.rmi."
-"server.RMIServerSocketFactory</literal> 实现的类名。如果它没有指定,将使用缺"
-"省的 <literal>RMIServerSocketFactory</literal>。"
+"<emphasis role=\"bold\">ServerSocketFactory</emphasis>:可选的自定义 "
+"<literal>java.rmi.server.RMIServerSocketFactory</literal> 实现的类名,它在 <literal>SRPServerInterface</"
+"literal> 的导出过程中被使用。如果它"
+"没有指定,将使用缺省的 <literal>RMIServerSocketFactory</literal>。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1622
-#, fuzzy, no-c-format
+#, no-c-format
 msgid ""
 "<emphasis role=\"bold\">AuthenticationCacheTimeout</emphasis>: Specifies the "
 "timed cache policy timeout in seconds. If not specified this defaults to "
 "1800 seconds(30 minutes)."
-msgstr ""
-"<emphasis role=\"bold\">algorithm</emphasis>:这是所使用的加密算法证书。如果"
-"没有指定的话,缺省值是 SunX509。"
+msgstr "<emphasis role=\"bold\">AuthenticationCacheTimeout</emphasis>:指定缓存策略的超时时间,以秒为单位。缺省值为 1800 秒(30 分钟)。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1627
@@ -6516,7 +6536,7 @@
 "the timed cache policy resolution in seconds. This controls the interval "
 "between checks for timeouts. If not specified this defaults to 60 seconds(1 "
 "minute)."
-msgstr ""
+msgstr "<emphasis role=\"bold\">AuthenticationCacheResolution</emphasis>:指定以秒为单位的定时缓存策略。它控制检查超时的间隔。如果没有指定,其缺省值是 60 秒(1 分钟)。"
 
 #. Tag: para
 #: J2EE_Security_On_JBOSS.xml:1632

More information about the jboss-cvs-commits mailing list