"Project-Id-Version: Squid-3\n"
"Report-Msgid-Bugs-To: \n"
"POT-Creation-Date: 2011-05-04 13:58+1200\n"
-"PO-Revision-Date: 2011-05-04 03:59+0200\n"
+"PO-Revision-Date: 2011-05-04 04:34+0200\n"
"Last-Translator: Amos <squid3@treenet.co.nz>\n"
"Language-Team: Squid Developers <squid-dev@squid-cache.org>\n"
"Language: en\n"
"Specity the LDAP server to connect to by LDAP URI (requires OpenLDAP "
"libraries). Servers can also be specified last on the command line."
msgstr ""
+"Specity the LDAP server to connect to by LDAP URI (requires OpenLDAP "
+"libraries). Servers can also be specified last on the command line."
#. type: Plain text
#: helpers/basic_auth/LDAP/basic_ldap_auth.8:206
"than the default LDAP port 389. Can also be specified within the server "
"specification by using servername:port syntax."
msgstr ""
+"Specify an alternate TCP port where the LDAP server is listening if other "
+"than the default LDAP port 389. Can also be specified within the server "
+"specification by using servername:port syntax."
#. type: Plain text
#: helpers/basic_auth/LDAP/basic_ldap_auth.8:218
"locate your user DNs as these can no longer be constructed directly from the "
"base DN and login name alone:"
msgstr ""
+"If you have sub-domains then you need to use a search filter approach to "
+"locate your user DNs as these can no longer be constructed directly from the "
+"base DN and login name alone:"
#. type: Plain text
#: helpers/basic_auth/LDAP/basic_ldap_auth.8:263
"And similarly if you only want to allow access to users having a specific "
"attribute"
msgstr ""
+"And similarly if you only want to allow access to users having a specific "
+"attribute"
#. type: Plain text
#: helpers/basic_auth/LDAP/basic_ldap_auth.8:274
"It is possible to enable case insensitive group name comparison ( B<-c> ), "
"but on some non-English locales, the results can be unexpected."
msgstr ""
+"It is possible to enable case insensitive group name comparison ( B<-c> ), "
+"but on some non-English locales, the results can be unexpected."
#. type: Plain text
#: helpers/external_acl/AD_group/ext_ad_group_acl.8:167
"fixed by using version 4.91 SP3+, with the 'Auto-Reconnect' feature not re-"
"populating the networkAddress field in eDirectory."
msgstr ""
+"There is a known issue regarding Novell's Client for Windows, that is mostly "
+"fixed by using version 4.91 SP3+, with the 'Auto-Reconnect' feature not re-"
+"populating the networkAddress field in eDirectory."
#. type: Plain text
#: helpers/external_acl/eDirectory_userip/ext_edirectory_userip_acl.8:179
"low on connection licenses, that it I sometimes does not populate the "
"networkAddress fields correctly."
msgstr ""
+"I have also experienced an issue related to using NetWare 6.5 (SP6 and "
+"lower?) and connection licensing. It appears that whenever a server runs "
+"low on connection licenses, that it I sometimes does not populate the "
+"networkAddress fields correctly."
#. type: Plain text
#: helpers/external_acl/eDirectory_userip/ext_edirectory_userip_acl.8:186
"B<basic_ldap_auth> as a fallback. Check ConsoleOne, etc to verify their "
"networkAddress fields to troubleshoot."
msgstr ""
+"Majority of Proxy Authentication issues can be resolved by having the users' "
+"B<reboot> if their networkAddress is not correct, or using "
+"B<basic_ldap_auth> as a fallback. Check ConsoleOne, etc to verify their "
+"networkAddress fields to troubleshoot."
#. type: Plain text
#: helpers/external_acl/eDirectory_userip/ext_edirectory_userip_acl.8:211
"B<ext_file_userip_acl> is an installed binary. An external helper for the "
"Squid external acl scheme."
msgstr ""
+"B<ext_file_userip_acl> is an installed binary. An external helper for the "
+"Squid external acl scheme."
#. type: Plain text
#: helpers/external_acl/file_userip/ext_file_userip_acl.8:22
#. type: Plain text
#: helpers/external_acl/file_userip/ext_file_userip_acl.8:43
msgid "The B<squid.conf> configuration for the external ACL should be:"
-msgstr ""
+msgstr "The B<squid.conf> configuration for the external ACL should be:"
#. type: Plain text
#: helpers/external_acl/file_userip/ext_file_userip_acl.8:51
"If the helper program finds a matching username/ip in the configuration "
"file, it returns B<OK> , otherwise it returns B<ERR .>"
msgstr ""
+"If the helper program finds a matching username/ip in the configuration "
+"file, it returns B<OK> , otherwise it returns B<ERR .>"
#. type: Plain text
#: helpers/external_acl/file_userip/ext_file_userip_acl.8:53
"Where B<ip_addr> is a dotted quad format IP address, the B<netmask> must be "
"in dotted quad format too."
msgstr ""
+"Where B<ip_addr> is a dotted quad format IP address, the B<netmask> must be "
+"in dotted quad format too."
#. type: Plain text
#: helpers/external_acl/file_userip/ext_file_userip_acl.8:68
"When the second parameter is prefixed with an B<@> , the program will lookup "
"the B</etc/group> file entry for the specified username."
msgstr ""
+"When the second parameter is prefixed with an B<@> , the program will lookup "
+"the B</etc/group> file entry for the specified username."
#. any user on this IP address may authenticate\" or \"no user on this ip address may authenticate\".
#. type: Plain text
#: helpers/external_acl/file_userip/ext_file_userip_acl.8:74
msgid "There are other two directives, B<ALL> and B<NONE> , which mean"
-msgstr ""
+msgstr "There are other two directives, B<ALL> and B<NONE> , which mean"
#. type: Plain text
#: helpers/external_acl/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:7
"user@REALM, NDOMAIN\\euser) to be checked against the LDAP directory are "
"specified on subsequent lines of input to the helper, one username per line."
msgstr ""
+"B<ext_kerberos_ldap_group_acl> is an installed binary and allows Squid to "
+"connect to a LDAP directory to authorize users via LDAP groups. Options are "
+"specified as parameters on the command line, while the username (e.g. user, "
+"user@REALM, NDOMAIN\\euser) to be checked against the LDAP directory are "
+"specified on subsequent lines of input to the helper, one username per line."
#. type: Plain text
#: helpers/external_acl/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:28
#. type: Plain text
#: helpers/external_acl/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:80
msgid "Maximal depth of recursive group search."
-msgstr ""
+msgstr "Maximal depth of recursive group search."
#. type: Plain text
#: helpers/external_acl/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:83
msgid "Username for LDAP server."
-msgstr ""
+msgstr "Username for LDAP server."
#. type: Plain text
#: helpers/external_acl/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:86
msgid "Password for LDAP server."
-msgstr ""
+msgstr "Password for LDAP server."
#. type: Plain text
#: helpers/external_acl/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:91
"hold of a copy of your Squid configuration file or extracts the password "
"used from a process listing."
msgstr ""
+"As the password needs to be printed in plain text in your Squid "
+"configuration it is strongly recommended to use a account with minimal "
+"associated privileges. This to limit the damage in case someone could get "
+"hold of a copy of your Squid configuration file or extracts the password "
+"used from a process listing."
#. type: Plain text
#: helpers/external_acl/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:95
"This helper is intended to be used as an B<external_acl_type> helper in "
"B<squid.conf.>"
msgstr ""
+"This helper is intended to be used as an B<external_acl_type> helper in "
+"B<squid.conf.>"
#. type: Plain text
#: helpers/external_acl/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:138
#: helpers/negotiate_auth/kerberos/negotiate_kerberos_auth.8:55
msgid "B<NOTE:> The following squid startup file modification may be required:"
-msgstr ""
+msgstr "B<NOTE:> The following squid startup file modification may be required:"
#. type: Plain text
#: helpers/external_acl/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:142
#. type: Plain text
#: helpers/external_acl/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:238
msgid "B<RFC1035> - Domain names - implementation and specification,"
-msgstr ""
+msgstr "B<RFC1035> - Domain names - implementation and specification,"
#. type: Plain text
#: helpers/external_acl/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:240
msgid ""
"B<RFC2782> - A DNS RR for specifying the location of services (DNS SRV),"
msgstr ""
+"B<RFC2782> - A DNS RR for specifying the location of services (DNS SRV),"
#. type: Plain text
#: helpers/external_acl/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:245
"The DN and password to bind as while performing searches. Required if the "
"LDAP directory does not allow anonymous searches."
msgstr ""
+"The DN and password to bind as while performing searches. Required if the "
+"LDAP directory does not allow anonymous searches."
#. type: Plain text
#: helpers/external_acl/LDAP_group/ext_ldap_group_acl.8:93
.B ext_kerberos_ldap_group_acl
is an installed binary and allows Squid to connect to a LDAP directory to
authorize users via LDAP groups. Options are specified as parameters on the
-command line, while the username (e.g. user, user@REALM, NDOMAIN\\user) to
-be checked against the LDAP directory are specified on subsequent lines of
+command line, while the username (e.g.
+.B user
+,
+.B user@REALM
+,
+.B NDOMAIN\\user
+) to be checked against the LDAP directory are specified on subsequent lines of
input to the helper, one username per line.
.PP
.B ext_kerberos_ldap_group_acl
-will determine the ldap server name from DNS SRV and/or
-A records or a local hosts file (e.g. for the Kerberos Realm SUSE.HOME it
-will look for an SRV record _ldap._tcp.SUSE.HOME and an A record SUSE.HOME
-or a SUSE.HOME hosts entry). If no domain information is available from the
-username the ldap server will be determined through the command line options.
+will determine the ldap server name from DNS SRV and/or A records or a
+local hosts file (e.g. for the Kerberos Realm
+.B SUSE.HOME
+it will look for an SRV record
+.B _ldap._tcp.SUSE.HOME
+and an A record
+.B SUSE.HOME
+or a
+.B SUSE.HOME
+hosts entry). If no domain information is available from the
+username the LDAP server will be determined through the command line options.
.PP
.B ext_kerberos_ldap_group_acl
-requires as a minimum the \-g, \-t or \-T option which
-provides the ldap group name the user has to belong too. For Active Directory
-a recursive group lookup is implemented until a max depth specified by \-m depth.
-For other Ldap servers a RFC2307bis schema of groups is assumed.
+requires as a minimum the
+.B \-g
+,
+.B \-t
+or
+.B \-T
+option which provides the LDAP group name the user has to belong too. For Active Directory
+a recursive group lookup is implemented until a max depth specified by
+.B \-m
+depth. For other LDAP servers a RFC2307bis schema of groups is assumed.
.PP
Different group names can be specified for different domains using a
group@domain syntax.
Write informational messages to stderr.
.if !'po4a'hide' .TP 12
.if !'po4a'hide' .B \-s
-Use SSL for the ldap connection.
+Use SSL for the LDAP connection.
.IP
The CA certificate file can be set via the environment variable TLS_CACERTFILE (default /etc/ssl/certs/cert.pem) (OpenLDAP).
.IP
Password for LDAP server.
.IP
As the password needs to be printed in plain text in your Squid configuration
-it is strongly recommended to use a account with minimal associated privileges.
+it is strongly recommended to use an account with minimal associated privileges.
This to limit the damage in case someone could get hold of a copy of your Squid
configuration file or extracts the password used from a process listing.
.
projects / thirdparty / squid.git / commitdiff
