From: André Malo Date: Sat, 3 Mar 2018 12:53:47 +0000 (+0000) Subject: update transformation X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=cc6475b18526d3fd16a80f4cb19a35fd4dd36b4f;p=apache update transformation git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1825767 13f79535-47bb-0310-9956-ffa450edef68 --- diff --git a/docs/man/ctlogconfig.8 b/docs/man/ctlogconfig.8 index e6f2c5a466..712cf9c581 100644 --- a/docs/man/ctlogconfig.8 +++ b/docs/man/ctlogconfig.8 @@ -1,149 +1,149 @@ -.\" XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX -.\" DO NOT EDIT! Generated from XML source. -.\" XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX -.de Sh \" Subsection -.br -.if t .Sp -.ne 5 -.PP -\fB\\$1\fR -.PP -.. -.de Sp \" Vertical space (when we can't use .PP) -.if t .sp .5v -.if n .sp -.. -.de Ip \" List item -.br -.ie \\n(.$>=3 .ne \\$3 -.el .ne 3 -.IP "\\$1" \\$2 -.. -.TH "CTLOGCONFIG" 8 "@date@" "Apache HTTP Server" "ctlogconfig" +.\" XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX +.\" DO NOT EDIT! Generated from XML source. +.\" XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX +.de Sh \" Subsection +.br +.if t .Sp +.ne 5 +.PP +\fB\\$1\fR +.PP +.. +.de Sp \" Vertical space (when we can't use .PP) +.if t .sp .5v +.if n .sp +.. +.de Ip \" List item +.br +.ie \\n(.$>=3 .ne \\$3 +.el .ne 3 +.IP "\\$1" \\$2 +.. +.TH "CTLOGCONFIG" 8 "2018-03-03" "Apache HTTP Server" "ctlogconfig" -.SH NAME -ctlogconfig \- Certificate Transparency log configuration tool +.SH NAME +ctlogconfig \- Certificate Transparency log configuration tool -.SH "SYNOPSIS" - -.PP -\fBctlogconfig\fR \fI/path/to/db\fR \fBdump\fR - -.PP -\fBctlogconfig\fR \fI/path/to/db\fR \fBconfigure-public-key\fR [ \fIlog-id\fR|\fIrecord-id\fR ] \fI/path/to/public-key\&.pem\fR - -.PP -\fBctlogconfig\fR \fI/path/to/db\fR \fBconfigure-url\fR [ \fIlog-id\fR|\fIrecord-id\fR ] \fIlog-URL\fR - -.PP -\fBctlogconfig\fR \fI/path/to/db\fR \fBvalid-time-range\fR \fIlog-id\fR|\fIrecord-id\fR \fImin-timestamp\fR \fImax-timestamp\fR - -.PP -\fBctlogconfig\fR \fI/path/to/db\fR \fBtrust\fR \fIlog-id\fR|\fIrecord-id\fR - -.PP -\fBctlogconfig\fR \fI/path/to/db\fR \fBdistrust\fR \fIlog-id\fR|\fIrecord-id\fR - -.PP -\fBctlogconfig\fR \fI/path/to/db\fR \fBforget\fR \fIlog-id\fR|\fIrecord-id\fR - - -.TP -\fIlog-id\fR -This is the id of the log, which is the SHA-256 hash of the log's public key, provided in hexadecimal format\&. This string is 64 characters in length\&. -.TP -\fIrecord-id\fR -This is the record number in the database, as displayed by the \fBdump\fR sub-command, prefixed with \fB#\fR\&. As an example, \fB#4\fR references the fourth record in the database\&. (Use shell escaping as necessary\&.) -.TP -\fI/path/to/public-key\&.pem\fR -This is a file containing the log's public key in PEM format\&. The public key is not stored in the database\&. Instead, a reference to the file is stored\&. Thus, the file cannot be removed until the public key in the database is removed or changed\&. -.TP -\fImin-timestamp\fR, \fImax-timestamp\fR -A timestamp is a time as expressed in the number of milliseconds since the epoch, ignoring leap seconds\&. This is the form of time used in Signed Certificate Timestamps\&. This must be provided as a decimal number\&. Specify \fB-\fR for one of the timestamps if it is unknown\&. For example, when configuring the minimum valid timestamp for a log which remains valid, specify \fB-\fR for \fImax-timestamp\fR\&. SCTs received from this log by the proxy are invalid if the timestamp is older than \fImin-timestamp\fR or newer than \fImax-timestamp\fR\&. - +.SH "SYNOPSIS" + +.PP +\fBctlogconfig\fR \fI/path/to/db\fR \fBdump\fR + +.PP +\fBctlogconfig\fR \fI/path/to/db\fR \fBconfigure-public-key\fR [ \fIlog-id\fR|\fIrecord-id\fR ] \fI/path/to/public-key\&.pem\fR + +.PP +\fBctlogconfig\fR \fI/path/to/db\fR \fBconfigure-url\fR [ \fIlog-id\fR|\fIrecord-id\fR ] \fIlog-URL\fR + +.PP +\fBctlogconfig\fR \fI/path/to/db\fR \fBvalid-time-range\fR \fIlog-id\fR|\fIrecord-id\fR \fImin-timestamp\fR \fImax-timestamp\fR + +.PP +\fBctlogconfig\fR \fI/path/to/db\fR \fBtrust\fR \fIlog-id\fR|\fIrecord-id\fR + +.PP +\fBctlogconfig\fR \fI/path/to/db\fR \fBdistrust\fR \fIlog-id\fR|\fIrecord-id\fR + +.PP +\fBctlogconfig\fR \fI/path/to/db\fR \fBforget\fR \fIlog-id\fR|\fIrecord-id\fR + + +.TP +\fIlog-id\fR +This is the id of the log, which is the SHA-256 hash of the log's public key, provided in hexadecimal format\&. This string is 64 characters in length\&. +.TP +\fIrecord-id\fR +This is the record number in the database, as displayed by the \fBdump\fR sub-command, prefixed with \fB#\fR\&. As an example, \fB#4\fR references the fourth record in the database\&. (Use shell escaping as necessary\&.) +.TP +\fI/path/to/public-key\&.pem\fR +This is a file containing the log's public key in PEM format\&. The public key is not stored in the database\&. Instead, a reference to the file is stored\&. Thus, the file cannot be removed until the public key in the database is removed or changed\&. +.TP +\fImin-timestamp\fR, \fImax-timestamp\fR +A timestamp is a time as expressed in the number of milliseconds since the epoch, ignoring leap seconds\&. This is the form of time used in Signed Certificate Timestamps\&. This must be provided as a decimal number\&. Specify \fB-\fR for one of the timestamps if it is unknown\&. For example, when configuring the minimum valid timestamp for a log which remains valid, specify \fB-\fR for \fImax-timestamp\fR\&. SCTs received from this log by the proxy are invalid if the timestamp is older than \fImin-timestamp\fR or newer than \fImax-timestamp\fR\&. + -.SH "SUMMARY" - -.PP -ctlogconfig is a tool for creating and maintaining a log configuration database, for use with mod_ssl_ct\&. - -.PP -Refer first to Log configuration in the mod_ssl_ct documentation\&. - -.PP -Refer to the examples below for typical use\&. - +.SH "SUMMARY" + +.PP +ctlogconfig is a tool for creating and maintaining a log configuration database, for use with mod_ssl_ct\&. + +.PP +Refer first to Log configuration in the mod_ssl_ct documentation\&. + +.PP +Refer to the examples below for typical use\&. + -.SH "SUB-COMMANDS" - - -.TP -dump -Display configuration database contents\&. The record id shown in the output of this sub-command can be used to identify the affected record in other sub-commands\&. -.TP -configure-public-key -Add a log's public key to the database or set the public key for an existing entry\&. The log's public key is needed to validate the signature of SCTs received by a proxy from a backend server\&. (The database will be created if it does not yet exist\&.) -.TP -configure-url -Add a log's URL to the database or set the URL for an existing entry\&. The log's URL is used when submitting server certificates to logs in order to obtain SCTs to send to clients\&. (The database will be created if it does not yet exist\&.) -.TP -valid-time-range -Set the minimum valid time and/or the maximum valid time for a log\&. SCTs from the log with timestamps outside of the valid range will not be accepted\&. Use - for a time that is not being configured\&. (The database will be created if it does not yet exist\&.) -.TP -trust -Mark a log as trusted, which is the default setting\&. This sub-command is used to reverse a \fIdistrust\fR setting\&. (The database will be created if it does not yet exist\&.) -.TP -distrust -Mark a log as distrusted\&. (The database will be created if it does not yet exist\&.) -.TP -forget -Remove information about a log from the database\&. - -.SH "EXAMPLES" - -.PP -Consider an Apache httpd instance which serves as a TLS server and a proxy\&. The TLS server needs to obtain SCTs from a couple of known logs in order to pass those to clients, and the proxy needs to be able to validate the signature of SCTs received from backend servers\&. - -.PP -First we'll configure the URLs for logs where server certificates are logged: - -.nf +.SH "SUB-COMMANDS" + + +.TP +dump +Display configuration database contents\&. The record id shown in the output of this sub-command can be used to identify the affected record in other sub-commands\&. +.TP +configure-public-key +Add a log's public key to the database or set the public key for an existing entry\&. The log's public key is needed to validate the signature of SCTs received by a proxy from a backend server\&. (The database will be created if it does not yet exist\&.) +.TP +configure-url +Add a log's URL to the database or set the URL for an existing entry\&. The log's URL is used when submitting server certificates to logs in order to obtain SCTs to send to clients\&. (The database will be created if it does not yet exist\&.) +.TP +valid-time-range +Set the minimum valid time and/or the maximum valid time for a log\&. SCTs from the log with timestamps outside of the valid range will not be accepted\&. Use - for a time that is not being configured\&. (The database will be created if it does not yet exist\&.) +.TP +trust +Mark a log as trusted, which is the default setting\&. This sub-command is used to reverse a \fIdistrust\fR setting\&. (The database will be created if it does not yet exist\&.) +.TP +distrust +Mark a log as distrusted\&. (The database will be created if it does not yet exist\&.) +.TP +forget +Remove information about a log from the database\&. + +.SH "EXAMPLES" + +.PP +Consider an Apache httpd instance which serves as a TLS server and a proxy\&. The TLS server needs to obtain SCTs from a couple of known logs in order to pass those to clients, and the proxy needs to be able to validate the signature of SCTs received from backend servers\&. + +.PP +First we'll configure the URLs for logs where server certificates are logged: + +.nf - $ ctlogconfig /path/to/conf/log-config configure-url http://log1\&.example\&.com/ - $ ctlogconfig /path/to/conf/log-config configure-url http://log2\&.example\&.com/ - $ ctlogconfig /path/to/conf/log-config dump - Log entry: - Record 1 - Log id : (not configured) - Public key file: (not configured) - URL : http://log1\&.example\&.com/ - Time range : -INF to +INF - Log entry: - Record 2 - Log id : (not configured) - Public key file: (not configured) - URL : http://log2\&.example\&.com/ - Time range : -INF to +INF -.fi - -.PP -Next we'll set the public key of a log where the certificate of our only backend server is published\&. In this case it is the log with URL http://log2\&.example\&.com/ which has already been configured\&. - -.nf + $ ctlogconfig /path/to/conf/log-config configure-url http://log1\&.example\&.com/ + $ ctlogconfig /path/to/conf/log-config configure-url http://log2\&.example\&.com/ + $ ctlogconfig /path/to/conf/log-config dump + Log entry: + Record 1 + Log id : (not configured) + Public key file: (not configured) + URL : http://log1\&.example\&.com/ + Time range : -INF to +INF + Log entry: + Record 2 + Log id : (not configured) + Public key file: (not configured) + URL : http://log2\&.example\&.com/ + Time range : -INF to +INF +.fi + +.PP +Next we'll set the public key of a log where the certificate of our only backend server is published\&. In this case it is the log with URL http://log2\&.example\&.com/ which has already been configured\&. + +.nf - $ ctlogconfig /path/to/conf/log-config configure-public-key \\ - $ ctlogconfig /path/to/conf/log-config dump - Log entry: - Record 1 - Log id : (not configured) - Public key file: (not configured) - URL : http://log1\&.example\&.com/ - Time range : -INF to +INF - Log entry: - Record 2 - Log id : (not configured) - Public key file: /path/to/conf/log2-pub\&.pem - URL : http://log2\&.example\&.com/ - Time range : -INF to +INF -.fi - + $ ctlogconfig /path/to/conf/log-config configure-public-key \\ + $ ctlogconfig /path/to/conf/log-config dump + Log entry: + Record 1 + Log id : (not configured) + Public key file: (not configured) + URL : http://log1\&.example\&.com/ + Time range : -INF to +INF + Log entry: + Record 2 + Log id : (not configured) + Public key file: /path/to/conf/log2-pub\&.pem + URL : http://log2\&.example\&.com/ + Time range : -INF to +INF +.fi + diff --git a/docs/manual/convenience.map b/docs/manual/convenience.map index 7a0bd90a11..a1daaff9fc 100644 --- a/docs/manual/convenience.map +++ b/docs/manual/convenience.map @@ -6,6 +6,7 @@ # RewriteCond ${dir2url:$1} (.+) # RewriteRule ^/+([^/]+)$ /manual/%1 [R=301,NE,L] +accepterrorsnonfatal mod/mpm_common.html#accepterrorsnonfatal acceptfilter mod/core.html#acceptfilter acceptpathinfo mod/core.html#acceptpathinfo accessfilename mod/core.html#accessfilename @@ -403,6 +404,7 @@ maxrequestworkers mod/mpm_common.html#maxrequestworkers maxspareservers mod/prefork.html#maxspareservers maxsparethreads mod/mpm_common.html#maxsparethreads maxthreads mod/mpm_netware.html#maxthreads +mdbaseserver mod/mod_md.html#mdbaseserver mdcachallenges mod/mod_md.html#mdcachallenges mdcertificateagreement mod/mod_md.html#mdcertificateagreement mdcertificateauthority mod/mod_md.html#mdcertificateauthority diff --git a/docs/manual/mod/core.html.fr b/docs/manual/mod/core.html.fr index a32be92c19..f9e8a3ce8b 100644 --- a/docs/manual/mod/core.html.fr +++ b/docs/manual/mod/core.html.fr @@ -33,6 +33,8 @@  ja  |  tr 

+
Cette traduction peut être périmée. Vérifiez la version + anglaise pour les changements récents.
Description:Fonctionnalités de base du serveur HTTP Apache toujours disponibles
Statut:Core
diff --git a/docs/manual/mod/mod_alias.html.es b/docs/manual/mod/mod_alias.html.es index 69d4e09b19..6351b1eb14 100644 --- a/docs/manual/mod/mod_alias.html.es +++ b/docs/manual/mod/mod_alias.html.es @@ -114,7 +114,7 @@ Alias "/foo" "/gaq"
top
-

Alias Directiva

+

Directiva Alias

Descripción:Mapea URLs a rutas del sistema de ficheros
Sintaxis:Alias [URL-path] @@ -182,7 +182,7 @@ Alias "/foo" "/gaq"
top
-

AliasMatch Directiva

+

Directiva AliasMatch

Descripción:Mapea URLs a ubicaciones del sistema de ficheros usando expresiones regulares
Sintaxis:AliasMatch regex @@ -250,7 +250,7 @@ AliasMatch "^/image/(.*)\.gif$" "/files/gif.images/$1.gif"
top
-

Redirect Directiva

+

Directiva Redirect

Descripción:Envía una redirección externa indicando al cliente que solicite una URL distinta
Sintaxis:Redirect [status] [URL-path] @@ -347,7 +347,7 @@ Redirect 303 "/three" "http://example.com/other"
top
-

RedirectMatch Directiva

+

Directiva RedirectMatch

@@ -381,7 +381,7 @@ Redirect 303 "/three" "http://example.com/other"
top
-

RedirectPermanent Directiva

+

Directiva RedirectPermanent

Descripción:Envía una redirección externa basada en una coincidencia de expresión regular con la URL actual
@@ -396,7 +396,7 @@ Redirect 303 "/three" "http://example.com/other"
top
-

RedirectTemp Directiva

+

Directiva RedirectTemp

Descripción:Envía una redirección externa permanente indicando al cliente que solicite una URL diferente
Sintaxis:RedirectPermanent URL-path URL
@@ -410,7 +410,7 @@ Redirect 303 "/three" "http://example.com/other"
top
-

ScriptAlias Directiva

+

Directiva ScriptAlias

Descripción:Envía una redirección externa temporal indicando al cliente que solicite una URL diferente
Sintaxis:RedirectTemp URL-path URL
Descripción:Mapea una URL a una ubicación del sistema de ficheros y designa el destino como un script CGI
Sintaxis:ScriptAlias [URL-path] @@ -479,7 +479,7 @@ Redirect 303 "/three" "http://example.com/other"
top
-

ScriptAliasMatch Directiva

+

Directiva ScriptAliasMatch

diff --git a/docs/manual/mod/mod_proxy_html.html.fr b/docs/manual/mod/mod_proxy_html.html.fr index fba254ddb7..39d93667c3 100644 --- a/docs/manual/mod/mod_proxy_html.html.fr +++ b/docs/manual/mod/mod_proxy_html.html.fr @@ -29,6 +29,8 @@

Langues Disponibles:  en  |  fr 

+
Cette traduction peut être périmée. Vérifiez la version + anglaise pour les changements récents.
Descripción:Mapea una URL a una ubicación del sistema de ficheros usando una expresión regular y designa el destino como un script CGI
diff --git a/docs/manual/mod/mod_remoteip.html.fr b/docs/manual/mod/mod_remoteip.html.fr index aa55ec57bd..ab8adfa9d1 100644 --- a/docs/manual/mod/mod_remoteip.html.fr +++ b/docs/manual/mod/mod_remoteip.html.fr @@ -29,6 +29,8 @@

Langues Disponibles:  en  |  fr 

+
Cette traduction peut être périmée. Vérifiez la version + anglaise pour les changements récents.
Description:Réécrit les liens HTML afin de s'assurer qu'ils soient bien adressables depuis les réseaux des clients dans un contexte de mandataire.
Description:Remplace l'adresse IP du client pour la requête par l'adresse IP présentée par un mandataire ou un répartiteur de charge via les en-têtes de la requête. diff --git a/docs/manual/mod/mod_ssl.html.es b/docs/manual/mod/mod_ssl.html.es index 774e808054..566e8861af 100644 --- a/docs/manual/mod/mod_ssl.html.es +++ b/docs/manual/mod/mod_ssl.html.es @@ -30,6 +30,10 @@  es  |  fr 

+
Esta traducción podría estar + obsoleta. Consulte la versión en inglés de la + documentación para comprobar si se han producido cambios + recientemente.
diff --git a/docs/manual/mod/module-dict.html.ja.utf8 b/docs/manual/mod/module-dict.html.ja.utf8 index de07064d96..d43e9e20b0 100644 --- a/docs/manual/mod/module-dict.html.ja.utf8 +++ b/docs/manual/mod/module-dict.html.ja.utf8 @@ -24,6 +24,7 @@ Apache > HTTP サーバ > ドキュメンテーション > バージョン 2.5

Apache モジュールの解説で使用する用語

翻訳済み言語:  en  | + fr  |  ja  |  ko  |  tr 

@@ -117,6 +118,7 @@

翻訳済み言語:  en  | + fr  |  ja  |  ko  |  tr 

diff --git a/docs/manual/mod/quickreference.html.de b/docs/manual/mod/quickreference.html.de index c24f6a3ed6..842b0d62b1 100644 --- a/docs/manual/mod/quickreference.html.de +++ b/docs/manual/mod/quickreference.html.de @@ -1110,7 +1110,7 @@ handshake
- + diff --git a/docs/manual/mod/quickreference.html.ja.utf8 b/docs/manual/mod/quickreference.html.ja.utf8 index d10737d6d9..5855db3da5 100644 --- a/docs/manual/mod/quickreference.html.ja.utf8 +++ b/docs/manual/mod/quickreference.html.ja.utf8 @@ -1030,7 +1030,7 @@ handshake - + diff --git a/docs/manual/mod/quickreference.html.ko.euc-kr b/docs/manual/mod/quickreference.html.ko.euc-kr index f27410bace..2dc09e1f4d 100644 --- a/docs/manual/mod/quickreference.html.ko.euc-kr +++ b/docs/manual/mod/quickreference.html.ko.euc-kr @@ -1056,7 +1056,7 @@ handshake - + diff --git a/docs/manual/mod/quickreference.html.tr.utf8 b/docs/manual/mod/quickreference.html.tr.utf8 index 171d97f1e9..48d4800bdf 100644 --- a/docs/manual/mod/quickreference.html.tr.utf8 +++ b/docs/manual/mod/quickreference.html.tr.utf8 @@ -1095,7 +1095,7 @@ handshake - + diff --git a/docs/manual/mod/quickreference.html.zh-cn.utf8 b/docs/manual/mod/quickreference.html.zh-cn.utf8 index b9cf7b83a7..f363f2918c 100644 --- a/docs/manual/mod/quickreference.html.zh-cn.utf8 +++ b/docs/manual/mod/quickreference.html.zh-cn.utf8 @@ -1093,7 +1093,7 @@ handshake - +
Descripción:Criptografía fuerte usando una Capa de Sockets Seguros (Secure Sockets Layer SSL) y protocolos de Seguridad de la Capa de Transporte (Transport Layer Security TLS)
SSLPassPhraseDialog type builtin sE
Type of pass phrase dialog for encrypted private keys
SSLPolicy namesvE
Apply a SSLPolicy by name
<SSLPolicy name>sE
Define a named set of SSL configurations
<SSLPolicyDefine name>sE
Define a named set of SSL configurations
SSLProtocol [+|-]protocol ... all -SSLv3 svE
Configure usable SSL/TLS protocol versions
SSLProxyCACertificateFile file-pathsvE
File of concatenated PEM-encoded CA Certificates for Remote Server Auth
SSLPassPhraseDialog type builtin sE
Type of pass phrase dialog for encrypted private keys
SSLPolicy namesvE
Apply a SSLPolicy by name
<SSLPolicy name>sE
Define a named set of SSL configurations
<SSLPolicyDefine name>sE
Define a named set of SSL configurations
SSLProtocol [+|-]protocol ... all -SSLv3 svE
Configure usable SSL/TLS protocol versions
SSLProxyCACertificateFile file-pathsvE
File of concatenated PEM-encoded CA Certificates for Remote Server Auth
SSLPassPhraseDialog type builtin sE
Type of pass phrase dialog for encrypted private keys
SSLPolicy namesvE
Apply a SSLPolicy by name
<SSLPolicy name>sE
Define a named set of SSL configurations
<SSLPolicyDefine name>sE
Define a named set of SSL configurations
SSLProtocol [+|-]protocol ... all -SSLv3 svE
Configure usable SSL/TLS protocol versions
SSLProxyCACertificateFile file-pathsvE
File of concatenated PEM-encoded CA Certificates for Remote Server Auth
SSLPassPhraseDialog type builtin sE
Type of pass phrase dialog for encrypted private keys
SSLPolicy nameskE
Apply a SSLPolicy by name
<SSLPolicy name>sE
Define a named set of SSL configurations
<SSLPolicyDefine name>sE
Define a named set of SSL configurations
SSLProtocol [+|-]protocol ... all -SSLv3 skE
Configure usable SSL/TLS protocol versions
SSLProxyCACertificateFile file-pathskE
File of concatenated PEM-encoded CA Certificates for Remote Server Auth
SSLPassPhraseDialog type builtin sE
Type of pass phrase dialog for encrypted private keys
SSLPolicy namesvE
Apply a SSLPolicy by name
<SSLPolicy name>sE
Define a named set of SSL configurations
<SSLPolicyDefine name>sE
Define a named set of SSL configurations
SSLProtocol [+|-]protocol ... all -SSLv3 svE
Configure usable SSL/TLS protocol versions
SSLProxyCACertificateFile file-pathsvE
File of concatenated PEM-encoded CA Certificates for Remote Server Auth