# SOME DESCRIPTIVE TITLE # Copyright (C) YEAR Free Software Foundation, Inc. # This file is distributed under the same license as the PACKAGE package. # FIRST AUTHOR , YEAR. # #, fuzzy msgid "" msgstr "" "Project-Id-Version: Squid-5\n" "POT-Creation-Date: 2017-09-16 18:04+1200\n" "PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n" "Last-Translator: FULL NAME \n" "Language-Team: Squid Developers \n" "Language: \n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=CHARSET\n" "Content-Transfer-Encoding: 8bit\n" #. type: SH #: src/acl/external/AD_group/ext_ad_group_acl.8:3 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:3 src/acl/external/file_userip/ext_file_userip_acl.8:3 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:3 src/acl/external/LDAP_group/ext_ldap_group_acl.8:3 src/acl/external/LM_group/ext_lm_group_acl.8:3 src/acl/external/session/ext_session_acl.8:3 src/acl/external/time_quota/ext_time_quota_acl.8:3 src/acl/external/unix_group/ext_unix_group_acl.8:3 src/auth/basic/getpwnam/basic_getpwnam_auth.8:3 src/auth/basic/LDAP/basic_ldap_auth.8:3 src/auth/basic/NCSA/basic_ncsa_auth.8:3 src/auth/basic/PAM/basic_pam_auth.8:3 src/auth/basic/RADIUS/basic_radius_auth.8:3 src/auth/basic/SASL/basic_sasl_auth.8:3 src/auth/basic/SSPI/basic_sspi_auth.8:3 src/auth/digest/file/digest_file_auth.8:3 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:3 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:3 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:3 src/security/cert_generators/file/security_file_certgen.8.in:3 src/squid.8.in:3 tools/cachemgr.cgi.8.in:3 tools/purge/purge.1:3 tools/squidclient/squidclient.1:3 #, no-wrap msgid "NAME" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:5 msgid "" "ext_ad_group_acl.exe - Squid external ACL helper to check Windows users " "group membership." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:7 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:7 src/auth/basic/SSPI/basic_sspi_auth.8:7 msgid "Version 2.0" msgstr "" #. type: SH #: src/acl/external/AD_group/ext_ad_group_acl.8:8 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:8 src/acl/external/file_userip/ext_file_userip_acl.8:8 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:8 src/acl/external/LDAP_group/ext_ldap_group_acl.8:8 src/acl/external/LM_group/ext_lm_group_acl.8:8 src/acl/external/session/ext_session_acl.8:8 src/acl/external/time_quota/ext_time_quota_acl.8:8 src/acl/external/unix_group/ext_unix_group_acl.8:6 src/auth/basic/getpwnam/basic_getpwnam_auth.8:6 src/auth/basic/LDAP/basic_ldap_auth.8:6 src/auth/basic/NCSA/basic_ncsa_auth.8:6 src/auth/basic/PAM/basic_pam_auth.8:6 src/auth/basic/RADIUS/basic_radius_auth.8:6 src/auth/basic/SASL/basic_sasl_auth.8:8 src/auth/basic/SSPI/basic_sspi_auth.8:8 src/auth/digest/file/digest_file_auth.8:8 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:8 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:8 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:8 src/security/cert_generators/file/security_file_certgen.8.in:8 src/squid.8.in:6 tools/cachemgr.cgi.8.in:6 tools/purge/purge.1:6 tools/squidclient/squidclient.1:6 #, no-wrap msgid "SYNOPSIS" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:12 src/acl/external/LM_group/ext_lm_group_acl.8:12 msgid "domain" msgstr "" #. type: SH #: src/acl/external/AD_group/ext_ad_group_acl.8:14 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:31 src/acl/external/file_userip/ext_file_userip_acl.8:14 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:12 src/acl/external/LDAP_group/ext_ldap_group_acl.8:24 src/acl/external/LM_group/ext_lm_group_acl.8:14 src/acl/external/session/ext_session_acl.8:16 src/acl/external/time_quota/ext_time_quota_acl.8:12 src/acl/external/unix_group/ext_unix_group_acl.8:13 src/auth/basic/getpwnam/basic_getpwnam_auth.8:9 src/auth/basic/LDAP/basic_ldap_auth.8:37 src/auth/basic/NCSA/basic_ncsa_auth.8:10 src/auth/basic/PAM/basic_pam_auth.8:13 src/auth/basic/RADIUS/basic_radius_auth.8:24 src/auth/basic/SASL/basic_sasl_auth.8:11 src/auth/basic/SSPI/basic_sspi_auth.8:18 src/auth/digest/file/digest_file_auth.8:13 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:12 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:12 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:16 src/security/cert_generators/file/security_file_certgen.8.in:30 src/squid.8.in:23 tools/cachemgr.cgi.8.in:9 tools/purge/purge.1:10 tools/squidclient/squidclient.1:61 #, no-wrap msgid "DESCRIPTION" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:17 msgid "B is an installed binary in Squid for Windows builds." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:20 msgid "" "This helper must be used in with an authentication scheme (typically Basic, " "NTLM or Negotiate) based on Windows Active Directory domain users." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:24 src/acl/external/LM_group/ext_lm_group_acl.8:24 msgid "" "It reads from the standard input the domain username and a list of groups " "and tries to match each against the groups membership of the specified " "username." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:26 msgid "Two running mode are available:" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:30 msgid "" "B<- Local mode:> membership is checked against machine's local groups, " "cannot be used when running on a Domain Controller." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:35 msgid "" "B<- Active Directory Global mode:> membership is checked against the whole " "Active Directory Forest of the machine where Squid is running." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:39 msgid "" "The minimal Windows version needed to run B is a " "Windows 2000 SP4 member of an Active Directory Domain." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:48 msgid "" "When running in Active Directory Global mode, all types of Active Directory " "security groups are supported: B , B from " "user's domain, B and Active Directory group nesting is fully " "supported." msgstr "" #. type: SH #: src/acl/external/AD_group/ext_ad_group_acl.8:49 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:42 src/acl/external/file_userip/ext_file_userip_acl.8:21 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:63 src/acl/external/LDAP_group/ext_ldap_group_acl.8:47 src/acl/external/LM_group/ext_lm_group_acl.8:25 src/acl/external/session/ext_session_acl.8:32 src/acl/external/time_quota/ext_time_quota_acl.8:22 src/acl/external/unix_group/ext_unix_group_acl.8:17 src/auth/basic/LDAP/basic_ldap_auth.8:60 src/auth/basic/NCSA/basic_ncsa_auth.8:33 src/auth/basic/PAM/basic_pam_auth.8:19 src/auth/basic/RADIUS/basic_radius_auth.8:29 src/auth/basic/SSPI/basic_sspi_auth.8:32 src/auth/digest/file/digest_file_auth.8:21 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:17 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:16 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:22 src/security/cert_generators/file/security_file_certgen.8.in:41 src/squid.8.in:57 tools/purge/purge.1:24 tools/squidclient/squidclient.1:70 #, no-wrap msgid "OPTIONS" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:53 msgid "Use case insensitive compare (local mode only)." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:57 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:61 src/acl/external/file_userip/ext_file_userip_acl.8:25 src/acl/external/LM_group/ext_lm_group_acl.8:33 src/acl/external/unix_group/ext_unix_group_acl.8:21 src/auth/basic/SSPI/basic_sspi_auth.8:40 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:20 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:30 src/security/cert_generators/file/security_file_certgen.8.in:57 msgid "Write debug info to stderr." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:62 msgid "Specify the default user's B" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:66 msgid "Start helper in Active Directory Global mode." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:70 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:80 src/acl/external/file_userip/ext_file_userip_acl.8:35 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:67 src/acl/external/LM_group/ext_lm_group_acl.8:45 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:21 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:24 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:38 src/security/cert_generators/file/security_file_certgen.8.in:68 msgid "Display the binary help and command line syntax info using stderr." msgstr "" #. type: SH #: src/acl/external/AD_group/ext_ad_group_acl.8:71 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:140 src/acl/external/file_userip/ext_file_userip_acl.8:36 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:132 src/acl/external/LDAP_group/ext_ldap_group_acl.8:209 src/acl/external/LM_group/ext_lm_group_acl.8:50 src/acl/external/session/ext_session_acl.8:72 src/acl/external/time_quota/ext_time_quota_acl.8:56 src/acl/external/unix_group/ext_unix_group_acl.8:34 src/auth/basic/getpwnam/basic_getpwnam_auth.8:36 src/auth/basic/LDAP/basic_ldap_auth.8:242 src/auth/basic/NCSA/basic_ncsa_auth.8:37 src/auth/basic/PAM/basic_pam_auth.8:39 src/auth/basic/RADIUS/basic_radius_auth.8:59 src/auth/basic/SASL/basic_sasl_auth.8:17 src/auth/basic/SSPI/basic_sspi_auth.8:49 src/auth/digest/file/digest_file_auth.8:26 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:43 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:30 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:43 src/security/cert_generators/file/security_file_certgen.8.in:107 tools/cachemgr.cgi.8.in:17 tools/purge/purge.1:172 #, no-wrap msgid "CONFIGURATION" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:75 msgid "" "When running in Active Directory Global mode, the AD Group can be specified " "using the following syntax:" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:78 msgid "B<1. Plain NT4 Group Name>" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:81 msgid "B<2. Full NT4 Group Name>" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:84 msgid "B<3. Active Directory Canonical name>" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:87 msgid "As Exampled:" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:97 msgid "When using Plain NT4 Group Name, the Group is searched in the user's domain." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:124 msgid "" "In the previous example all validated AD users member of " "I domain group or member of I machine " "local group are allowed to use the cache." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:133 msgid "" "Groups with spaces in name, for example B , must be quoted and " "the acl data ( B ) must be placed into a separate file " "included by specifying B The previous example will be:" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:137 msgid "and the DomainUsers files will contain only the following line:" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:139 msgid "Domain Users" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:146 msgid "" "B When running in Active Directory Global mode, for better " "performance, all Domain Controllers of the Active Directory forest should be " "configured as Global Catalog." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:152 msgid "" "B When running in local mode, the standard group name comparison is " "case sensitive, so group name must be specified with same case as in the " "local SAM database." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:157 msgid "" "It is possible to enable case insensitive group name comparison ( B<-c> ), " "but on some non-English locales, the results can be unexpected." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:165 msgid "" "B Native WIN32 NTLM and Basic helpers must be used without the " "B<-A> and B<-D> switches." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:169 msgid "Refer to Squid documentation for more details on B" msgstr "" #. type: SH #: src/acl/external/AD_group/ext_ad_group_acl.8:170 src/acl/external/LM_group/ext_lm_group_acl.8:114 src/auth/basic/SSPI/basic_sspi_auth.8:84 #, no-wrap msgid "TESTING" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:176 msgid "" "I strongly recommend that B is tested prior to being " "used in a production environment. It may behave differently on different " "platforms." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:188 src/acl/external/LM_group/ext_lm_group_acl.8:131 msgid "" "To test it, run it from the command line. Enter username and group pairs " "separated by a space (username must entered with URL-encoded " "I syntax). Press B to get an B or B " "message." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:192 src/acl/external/AD_group/ext_ad_group_acl.8:207 src/acl/external/LM_group/ext_lm_group_acl.8:135 msgid "Make sure pressing B behaves the same as a carriage return." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:196 src/acl/external/AD_group/ext_ad_group_acl.8:211 src/acl/external/LM_group/ext_lm_group_acl.8:139 msgid "Make sure pressing B aborts the program." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:203 src/acl/external/AD_group/ext_ad_group_acl.8:218 src/acl/external/LM_group/ext_lm_group_acl.8:146 src/auth/basic/SSPI/basic_sspi_auth.8:104 msgid "Test that entering no details does not result in an B or B message." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:222 src/acl/external/LM_group/ext_lm_group_acl.8:150 msgid "" "Test that entering an invalid username and group results in an B " "message." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:226 src/acl/external/LM_group/ext_lm_group_acl.8:154 msgid "Test that entering an valid username and group results in an B message." msgstr "" #. type: SH #: src/acl/external/AD_group/ext_ad_group_acl.8:227 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:185 src/acl/external/file_userip/ext_file_userip_acl.8:73 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:218 src/acl/external/LDAP_group/ext_ldap_group_acl.8:230 src/acl/external/LM_group/ext_lm_group_acl.8:155 src/acl/external/session/ext_session_acl.8:95 src/acl/external/time_quota/ext_time_quota_acl.8:214 src/acl/external/unix_group/ext_unix_group_acl.8:66 src/auth/basic/getpwnam/basic_getpwnam_auth.8:63 src/auth/basic/LDAP/basic_ldap_auth.8:298 src/auth/basic/NCSA/basic_ncsa_auth.8:51 src/auth/basic/PAM/basic_pam_auth.8:78 src/auth/basic/RADIUS/basic_radius_auth.8:87 src/auth/basic/SASL/basic_sasl_auth.8:73 src/auth/basic/SSPI/basic_sspi_auth.8:121 src/auth/digest/file/digest_file_auth.8:60 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:94 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:64 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:90 src/security/cert_generators/file/security_file_certgen.8.in:143 src/squid.8.in:235 tools/cachemgr.cgi.8.in:49 tools/purge/purge.1:254 tools/squidclient/squidclient.1:230 #, no-wrap msgid "AUTHOR" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:229 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:187 src/acl/external/file_userip/ext_file_userip_acl.8:75 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:220 src/acl/external/LDAP_group/ext_ldap_group_acl.8:232 src/acl/external/LM_group/ext_lm_group_acl.8:157 src/acl/external/unix_group/ext_unix_group_acl.8:68 src/auth/basic/getpwnam/basic_getpwnam_auth.8:65 src/auth/basic/SASL/basic_sasl_auth.8:75 src/auth/basic/SSPI/basic_sspi_auth.8:123 src/auth/digest/file/digest_file_auth.8:62 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:96 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:66 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:92 src/security/cert_generators/file/security_file_certgen.8.in:145 msgid "This program was written by" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:233 msgid "Based on prior work in B" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:235 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:190 src/acl/external/file_userip/ext_file_userip_acl.8:78 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:223 src/acl/external/LDAP_group/ext_ldap_group_acl.8:241 src/acl/external/LM_group/ext_lm_group_acl.8:167 src/acl/external/unix_group/ext_unix_group_acl.8:71 src/auth/basic/getpwnam/basic_getpwnam_auth.8:73 src/auth/basic/NCSA/basic_ncsa_auth.8:53 src/auth/basic/RADIUS/basic_radius_auth.8:95 src/auth/basic/SASL/basic_sasl_auth.8:78 src/auth/basic/SSPI/basic_sspi_auth.8:132 src/auth/digest/file/digest_file_auth.8:69 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:99 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:99 src/security/cert_generators/file/security_file_certgen.8.in:148 msgid "This manual was written by" msgstr "" #. type: SH #: src/acl/external/AD_group/ext_ad_group_acl.8:238 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:193 src/acl/external/file_userip/ext_file_userip_acl.8:81 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:225 src/acl/external/LDAP_group/ext_ldap_group_acl.8:243 src/acl/external/LM_group/ext_lm_group_acl.8:170 src/acl/external/session/ext_session_acl.8:100 src/acl/external/time_quota/ext_time_quota_acl.8:218 src/acl/external/unix_group/ext_unix_group_acl.8:73 src/auth/basic/getpwnam/basic_getpwnam_auth.8:75 src/auth/basic/LDAP/basic_ldap_auth.8:306 src/auth/basic/NCSA/basic_ncsa_auth.8:58 src/auth/basic/PAM/basic_pam_auth.8:82 src/auth/basic/RADIUS/basic_radius_auth.8:97 src/auth/basic/SASL/basic_sasl_auth.8:81 src/auth/basic/SSPI/basic_sspi_auth.8:135 src/auth/digest/file/digest_file_auth.8:72 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:101 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:74 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:102 src/security/cert_generators/file/security_file_certgen.8.in:151 src/squid.8.in:245 tools/cachemgr.cgi.8.in:55 tools/purge/purge.1:261 tools/squidclient/squidclient.1:237 #, no-wrap msgid "COPYRIGHT" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:245 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:200 src/acl/external/file_userip/ext_file_userip_acl.8:88 src/acl/external/LDAP_group/ext_ldap_group_acl.8:250 src/acl/external/LM_group/ext_lm_group_acl.8:177 src/acl/external/session/ext_session_acl.8:107 src/acl/external/time_quota/ext_time_quota_acl.8:225 src/acl/external/unix_group/ext_unix_group_acl.8:80 src/auth/basic/getpwnam/basic_getpwnam_auth.8:82 src/auth/basic/LDAP/basic_ldap_auth.8:313 src/auth/basic/NCSA/basic_ncsa_auth.8:65 src/auth/basic/PAM/basic_pam_auth.8:89 src/auth/basic/RADIUS/basic_radius_auth.8:104 src/auth/basic/SASL/basic_sasl_auth.8:88 src/auth/basic/SSPI/basic_sspi_auth.8:142 src/auth/digest/file/digest_file_auth.8:79 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:81 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:109 src/security/cert_generators/file/security_file_certgen.8.in:158 src/squid.8.in:252 tools/cachemgr.cgi.8.in:62 tools/purge/purge.1:268 tools/squidclient/squidclient.1:244 #, no-wrap msgid "" " * Copyright (C) 1996-2017 The Squid Software Foundation and contributors\n" " *\n" " * Squid software is distributed under GPLv2+ license and includes\n" " * contributions from numerous individuals and organizations.\n" " * Please see the COPYING and CONTRIBUTORS files for details.\n" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:247 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:202 src/acl/external/file_userip/ext_file_userip_acl.8:90 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:234 src/acl/external/LDAP_group/ext_ldap_group_acl.8:252 src/acl/external/LM_group/ext_lm_group_acl.8:179 src/acl/external/session/ext_session_acl.8:109 src/acl/external/time_quota/ext_time_quota_acl.8:227 src/acl/external/unix_group/ext_unix_group_acl.8:82 src/auth/basic/getpwnam/basic_getpwnam_auth.8:84 src/auth/basic/LDAP/basic_ldap_auth.8:315 src/auth/basic/RADIUS/basic_radius_auth.8:106 src/auth/basic/SASL/basic_sasl_auth.8:90 src/auth/basic/SSPI/basic_sspi_auth.8:144 src/auth/digest/file/digest_file_auth.8:81 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:110 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:83 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:111 msgid "This program and documentation is copyright to the authors named above." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:249 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:204 src/acl/external/file_userip/ext_file_userip_acl.8:92 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:236 src/acl/external/LDAP_group/ext_ldap_group_acl.8:254 src/acl/external/LM_group/ext_lm_group_acl.8:181 src/acl/external/session/ext_session_acl.8:111 src/acl/external/time_quota/ext_time_quota_acl.8:229 src/acl/external/unix_group/ext_unix_group_acl.8:84 src/auth/basic/getpwnam/basic_getpwnam_auth.8:86 src/auth/basic/LDAP/basic_ldap_auth.8:317 src/auth/basic/PAM/basic_pam_auth.8:96 src/auth/basic/RADIUS/basic_radius_auth.8:108 src/auth/basic/SASL/basic_sasl_auth.8:92 src/auth/basic/SSPI/basic_sspi_auth.8:146 src/auth/digest/file/digest_file_auth.8:83 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:112 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:85 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:113 msgid "" "Distributed under the GNU General Public License (GNU GPL) version 2 or " "later (GPLv2+)." msgstr "" #. type: SH #: src/acl/external/AD_group/ext_ad_group_acl.8:250 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:205 src/acl/external/file_userip/ext_file_userip_acl.8:93 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:237 src/acl/external/LDAP_group/ext_ldap_group_acl.8:255 src/acl/external/LM_group/ext_lm_group_acl.8:182 src/acl/external/session/ext_session_acl.8:112 src/acl/external/time_quota/ext_time_quota_acl.8:230 src/acl/external/unix_group/ext_unix_group_acl.8:85 src/auth/basic/getpwnam/basic_getpwnam_auth.8:87 src/auth/basic/LDAP/basic_ldap_auth.8:318 src/auth/basic/NCSA/basic_ncsa_auth.8:77 src/auth/basic/PAM/basic_pam_auth.8:97 src/auth/basic/RADIUS/basic_radius_auth.8:109 src/auth/basic/SASL/basic_sasl_auth.8:93 src/auth/basic/SSPI/basic_sspi_auth.8:147 src/auth/digest/file/digest_file_auth.8:84 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:113 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:86 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:114 src/security/cert_generators/file/security_file_certgen.8.in:159 src/squid.8.in:253 tools/cachemgr.cgi.8.in:63 tools/purge/purge.1:269 tools/squidclient/squidclient.1:245 #, no-wrap msgid "QUESTIONS" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:253 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:208 src/acl/external/file_userip/ext_file_userip_acl.8:96 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:240 src/acl/external/LDAP_group/ext_ldap_group_acl.8:258 src/acl/external/LM_group/ext_lm_group_acl.8:185 src/acl/external/session/ext_session_acl.8:115 src/acl/external/time_quota/ext_time_quota_acl.8:233 src/acl/external/unix_group/ext_unix_group_acl.8:88 src/auth/basic/getpwnam/basic_getpwnam_auth.8:90 src/auth/basic/LDAP/basic_ldap_auth.8:321 src/auth/basic/NCSA/basic_ncsa_auth.8:80 src/auth/basic/PAM/basic_pam_auth.8:100 src/auth/basic/RADIUS/basic_radius_auth.8:112 src/auth/basic/SASL/basic_sasl_auth.8:96 src/auth/basic/SSPI/basic_sspi_auth.8:150 src/auth/digest/file/digest_file_auth.8:87 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:116 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:89 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:117 src/security/cert_generators/file/security_file_certgen.8.in:162 src/squid.8.in:256 tools/cachemgr.cgi.8.in:66 tools/purge/purge.1:272 tools/squidclient/squidclient.1:248 msgid "" "Questions on the usage of this program can be sent to the I" msgstr "" #. type: SH #: src/acl/external/AD_group/ext_ad_group_acl.8:255 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:210 src/acl/external/file_userip/ext_file_userip_acl.8:98 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:242 src/acl/external/LDAP_group/ext_ldap_group_acl.8:263 src/acl/external/LM_group/ext_lm_group_acl.8:187 src/acl/external/session/ext_session_acl.8:117 src/acl/external/time_quota/ext_time_quota_acl.8:235 src/acl/external/unix_group/ext_unix_group_acl.8:90 src/auth/basic/getpwnam/basic_getpwnam_auth.8:92 src/auth/basic/LDAP/basic_ldap_auth.8:326 src/auth/basic/NCSA/basic_ncsa_auth.8:82 src/auth/basic/PAM/basic_pam_auth.8:102 src/auth/basic/RADIUS/basic_radius_auth.8:117 src/auth/basic/SASL/basic_sasl_auth.8:98 src/auth/basic/SSPI/basic_sspi_auth.8:152 src/auth/digest/file/digest_file_auth.8:89 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:118 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:91 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:119 src/security/cert_generators/file/security_file_certgen.8.in:164 src/squid.8.in:258 tools/cachemgr.cgi.8.in:68 tools/purge/purge.1:274 tools/squidclient/squidclient.1:250 #, no-wrap msgid "REPORTING BUGS" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:258 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:222 src/acl/external/file_userip/ext_file_userip_acl.8:101 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:245 src/acl/external/LDAP_group/ext_ldap_group_acl.8:266 src/acl/external/LM_group/ext_lm_group_acl.8:190 src/acl/external/session/ext_session_acl.8:120 src/acl/external/time_quota/ext_time_quota_acl.8:238 src/acl/external/unix_group/ext_unix_group_acl.8:93 src/auth/basic/getpwnam/basic_getpwnam_auth.8:95 src/auth/basic/LDAP/basic_ldap_auth.8:329 src/auth/basic/NCSA/basic_ncsa_auth.8:85 src/auth/basic/PAM/basic_pam_auth.8:105 src/auth/basic/RADIUS/basic_radius_auth.8:120 src/auth/basic/SASL/basic_sasl_auth.8:101 src/auth/basic/SSPI/basic_sspi_auth.8:155 src/auth/digest/file/digest_file_auth.8:92 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:121 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:94 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:122 src/security/cert_generators/file/security_file_certgen.8.in:167 src/squid.8.in:261 msgid "" "Bug reports need to be made in English. See " "https://wiki.squid-cache.org/SquidFaq/BugReporting for details of what you " "need to include with your bug report." msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:260 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:224 src/acl/external/file_userip/ext_file_userip_acl.8:103 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:247 src/acl/external/LDAP_group/ext_ldap_group_acl.8:268 src/acl/external/LM_group/ext_lm_group_acl.8:192 src/acl/external/session/ext_session_acl.8:122 src/acl/external/time_quota/ext_time_quota_acl.8:240 src/acl/external/unix_group/ext_unix_group_acl.8:95 src/auth/basic/getpwnam/basic_getpwnam_auth.8:97 src/auth/basic/LDAP/basic_ldap_auth.8:331 src/auth/basic/NCSA/basic_ncsa_auth.8:87 src/auth/basic/PAM/basic_pam_auth.8:107 src/auth/basic/RADIUS/basic_radius_auth.8:122 src/auth/basic/SASL/basic_sasl_auth.8:103 src/auth/basic/SSPI/basic_sspi_auth.8:157 src/auth/digest/file/digest_file_auth.8:94 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:123 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:96 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:124 src/security/cert_generators/file/security_file_certgen.8.in:169 src/squid.8.in:263 tools/cachemgr.cgi.8.in:72 tools/purge/purge.1:278 tools/squidclient/squidclient.1:254 msgid "Report bugs or bug fixes using https://bugs.squid-cache.org/" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:263 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:227 src/acl/external/file_userip/ext_file_userip_acl.8:106 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:250 src/acl/external/LDAP_group/ext_ldap_group_acl.8:271 src/acl/external/LM_group/ext_lm_group_acl.8:195 src/acl/external/session/ext_session_acl.8:125 src/acl/external/time_quota/ext_time_quota_acl.8:243 src/acl/external/unix_group/ext_unix_group_acl.8:98 src/auth/basic/getpwnam/basic_getpwnam_auth.8:100 src/auth/basic/LDAP/basic_ldap_auth.8:334 src/auth/basic/NCSA/basic_ncsa_auth.8:90 src/auth/basic/PAM/basic_pam_auth.8:110 src/auth/basic/RADIUS/basic_radius_auth.8:125 src/auth/basic/SASL/basic_sasl_auth.8:106 src/auth/basic/SSPI/basic_sspi_auth.8:160 src/auth/digest/file/digest_file_auth.8:97 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:126 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:99 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:127 src/security/cert_generators/file/security_file_certgen.8.in:172 src/squid.8.in:266 tools/cachemgr.cgi.8.in:75 tools/purge/purge.1:281 tools/squidclient/squidclient.1:257 msgid "" "Report serious security bugs to Isquid-bugs@lists.squid-cache.orgE>" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:266 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:230 src/acl/external/file_userip/ext_file_userip_acl.8:109 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:253 src/acl/external/LDAP_group/ext_ldap_group_acl.8:274 src/acl/external/LM_group/ext_lm_group_acl.8:198 src/acl/external/session/ext_session_acl.8:128 src/acl/external/time_quota/ext_time_quota_acl.8:246 src/acl/external/unix_group/ext_unix_group_acl.8:101 src/auth/basic/getpwnam/basic_getpwnam_auth.8:103 src/auth/basic/LDAP/basic_ldap_auth.8:337 src/auth/basic/NCSA/basic_ncsa_auth.8:93 src/auth/basic/PAM/basic_pam_auth.8:113 src/auth/basic/RADIUS/basic_radius_auth.8:128 src/auth/basic/SASL/basic_sasl_auth.8:109 src/auth/basic/SSPI/basic_sspi_auth.8:163 src/auth/digest/file/digest_file_auth.8:100 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:129 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:102 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:130 src/security/cert_generators/file/security_file_certgen.8.in:175 src/squid.8.in:269 tools/cachemgr.cgi.8.in:78 tools/purge/purge.1:284 tools/squidclient/squidclient.1:260 msgid "Report ideas for new improvements to the I" msgstr "" #. type: SH #: src/acl/external/AD_group/ext_ad_group_acl.8:268 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:232 src/acl/external/file_userip/ext_file_userip_acl.8:111 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:255 src/acl/external/LDAP_group/ext_ldap_group_acl.8:276 src/acl/external/LM_group/ext_lm_group_acl.8:200 src/acl/external/session/ext_session_acl.8:130 src/acl/external/time_quota/ext_time_quota_acl.8:248 src/acl/external/unix_group/ext_unix_group_acl.8:106 src/auth/basic/getpwnam/basic_getpwnam_auth.8:105 src/auth/basic/LDAP/basic_ldap_auth.8:339 src/auth/basic/NCSA/basic_ncsa_auth.8:95 src/auth/basic/PAM/basic_pam_auth.8:115 src/auth/basic/RADIUS/basic_radius_auth.8:130 src/auth/basic/SASL/basic_sasl_auth.8:111 src/auth/basic/SSPI/basic_sspi_auth.8:165 src/auth/digest/file/digest_file_auth.8:102 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:131 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:104 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:132 src/security/cert_generators/file/security_file_certgen.8.in:177 src/squid.8.in:271 tools/cachemgr.cgi.8.in:80 tools/purge/purge.1:286 tools/squidclient/squidclient.1:262 #, no-wrap msgid "SEE ALSO" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:273 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:238 src/acl/external/file_userip/ext_file_userip_acl.8:116 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:269 src/acl/external/LDAP_group/ext_ldap_group_acl.8:287 src/acl/external/LM_group/ext_lm_group_acl.8:205 src/acl/external/session/ext_session_acl.8:135 src/acl/external/time_quota/ext_time_quota_acl.8:253 src/acl/external/unix_group/ext_unix_group_acl.8:113 src/auth/basic/getpwnam/basic_getpwnam_auth.8:119 src/auth/basic/LDAP/basic_ldap_auth.8:349 src/auth/basic/NCSA/basic_ncsa_auth.8:101 src/auth/basic/PAM/basic_pam_auth.8:126 src/auth/basic/RADIUS/basic_radius_auth.8:137 src/auth/basic/SASL/basic_sasl_auth.8:122 src/auth/basic/SSPI/basic_sspi_auth.8:170 src/auth/digest/file/digest_file_auth.8:107 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:142 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:109 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:137 src/security/cert_generators/file/security_file_certgen.8.in:182 src/squid.8.in:281 msgid "The Squid FAQ wiki" msgstr "" #. type: Plain text #: src/acl/external/AD_group/ext_ad_group_acl.8:276 src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:241 src/acl/external/file_userip/ext_file_userip_acl.8:119 src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:272 src/acl/external/LDAP_group/ext_ldap_group_acl.8:290 src/acl/external/LM_group/ext_lm_group_acl.8:208 src/acl/external/session/ext_session_acl.8:138 src/acl/external/time_quota/ext_time_quota_acl.8:256 src/acl/external/unix_group/ext_unix_group_acl.8:116 src/auth/basic/getpwnam/basic_getpwnam_auth.8:122 src/auth/basic/LDAP/basic_ldap_auth.8:352 src/auth/basic/NCSA/basic_ncsa_auth.8:104 src/auth/basic/PAM/basic_pam_auth.8:129 src/auth/basic/RADIUS/basic_radius_auth.8:140 src/auth/basic/SASL/basic_sasl_auth.8:125 src/auth/basic/SSPI/basic_sspi_auth.8:173 src/auth/digest/file/digest_file_auth.8:110 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:145 src/auth/negotiate/SSPI/negotiate_sspi_auth.8:112 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:140 src/security/cert_generators/file/security_file_certgen.8.in:185 src/squid.8.in:284 msgid "The Squid Configuration Manual" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:5 msgid "ext_edirectory_userip_acl - Squid eDirectory IP Lookup Helper" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:15 tools/squidclient/squidclient.1:22 msgid "host" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:17 src/acl/external/LDAP_group/ext_ldap_group_acl.8:20 src/auth/basic/LDAP/basic_ldap_auth.8:18 src/auth/basic/LDAP/basic_ldap_auth.8:33 src/auth/basic/RADIUS/basic_radius_auth.8:16 src/squid.8.in:15 tools/squidclient/squidclient.1:26 msgid "port" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:19 msgid "LDAP version" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:21 msgid "basedn" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:23 msgid "scope" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:25 msgid "binddn" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:27 msgid "bindpass" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:29 src/acl/external/LDAP_group/ext_ldap_group_acl.8:14 msgid "filter" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:34 msgid "B is an installed binary." msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:38 msgid "" "This program has been written in order to solve the problems associated with " "running the Perl B as a squid external helper." msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:41 msgid "" "The limitations of the Perl script involved memory/cpu utilization, speed, " "the lack of eDirectory 8.8 support, and IPv6 support." msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:46 msgid "Force Addresses to be in IPv4 (0.0.0.0 format)." msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:50 msgid "Force Addresses to be in IPv6 (:: format)." msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:57 msgid "Specify B DN. For example; B" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:66 msgid "Specify binding DN. For example; B" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:71 msgid "Specify LDAP search filter. For example; B<(objectClass=User)>" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:76 msgid "Specify if LDAP search group is required. For example; B" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:84 msgid "Specify hostname or IP of server" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:88 msgid "Port number." msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:92 msgid "Use persistent connections." msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:100 msgid "" "Timeout factor for persistent connections. Set to B<0> for never " "timeout. Default is B<60> seconds." msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:105 src/acl/external/LDAP_group/ext_ldap_group_acl.8:173 msgid "search scope. Defaults to B" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:108 src/acl/external/LDAP_group/ext_ldap_group_acl.8:176 src/auth/basic/LDAP/basic_ldap_auth.8:128 msgid "B object only," msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:111 src/acl/external/LDAP_group/ext_ldap_group_acl.8:179 src/auth/basic/LDAP/basic_ldap_auth.8:131 msgid "B level below the base object or" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:114 src/acl/external/LDAP_group/ext_ldap_group_acl.8:182 src/auth/basic/LDAP/basic_ldap_auth.8:134 msgid "Btree below the base object" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:121 msgid "Set userid B Default is B" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:126 msgid "Set LDAP B" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:130 msgid "Display version information and exit." msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:135 msgid "Specify binding B" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:139 msgid "Enable TLS security." msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:160 msgid "" "In this example, the B and B are Groups " "that users may be used to control internet access, which can also be stacked " "against other ACL's. Use of the groups is optional, unless the '-G' option " "has been passed. Please note that you need to specify the full LDAP object " "for this, as shown above." msgstr "" #. type: SH #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:161 src/acl/external/unix_group/ext_unix_group_acl.8:60 src/auth/basic/NCSA/basic_ncsa_auth.8:45 src/security/cert_generators/file/security_file_certgen.8.in:88 tools/purge/purge.1:233 #, no-wrap msgid "KNOWN ISSUES" msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:166 msgid "" "IPv6 support has yet to be tested in a real IPv6 environment, but the code " "is in place to read IPv6 networkAddress fields, please attempt this in a " "TESTING environment first. Please contact the author regarding IPv6 support " "development." msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:171 msgid "" "There is a known issue regarding Novell's Client for Windows, that is mostly " "fixed by using version 4.91 SP3+, with the 'Auto-Reconnect' feature not " "re-populating the networkAddress field in eDirectory." msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:177 msgid "" "I have also experienced an issue related to using NetWare 6.5 (SP6 and " "lower?) and connection licensing. It appears that whenever a server runs " "low on connection licenses, that it I sometimes does not populate the " "networkAddress fields correctly." msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:184 msgid "" "Majority of Proxy Authentication issues can be resolved by having the users' " "B if their networkAddress is not correct, or using " "B as a fallback. Check ConsoleOne, etc to verify their " "networkAddress fields to troubleshoot." msgstr "" #. type: Plain text #: src/acl/external/eDirectory_userip/ext_edirectory_userip_acl.8:218 msgid "" "I B using the latest version of the Novell Client in all " "situations B seeking support! You may also need to make sure your " "servers have the latest service packs installed, and that your servers are " "properly synchronizing partitions." msgstr "" #. type: Plain text #: src/acl/external/file_userip/ext_file_userip_acl.8:5 msgid "" "ext_file_userip_acl - Restrict users to certain IP addresses, using a text " "file backend." msgstr "" #. type: Plain text #: src/acl/external/file_userip/ext_file_userip_acl.8:7 src/acl/external/time_quota/ext_time_quota_acl.8:7 src/auth/basic/SASL/basic_sasl_auth.8:7 src/security/cert_generators/file/security_file_certgen.8.in:7 msgid "Version 1.0" msgstr "" #. type: Plain text #: src/acl/external/file_userip/ext_file_userip_acl.8:12 msgid "file name" msgstr "" #. type: Plain text #: src/acl/external/file_userip/ext_file_userip_acl.8:17 msgid "" "B is an installed binary. An external helper for the " "Squid external acl scheme." msgstr "" #. type: Plain text #: src/acl/external/file_userip/ext_file_userip_acl.8:20 msgid "" "It works by reading a pair composed by an IP address and an username on " "STDIN and matching it against a configuration file." msgstr "" #. type: Plain text #: src/acl/external/file_userip/ext_file_userip_acl.8:31 msgid "Configuration B to load." msgstr "" #. type: Plain text #: src/acl/external/file_userip/ext_file_userip_acl.8:41 msgid "The B configuration for the external ACL should be:" msgstr "" #. type: Plain text #: src/acl/external/file_userip/ext_file_userip_acl.8:49 msgid "" "If the helper program finds a matching username/ip in the configuration " "file, it returns B , otherwise it returns B" msgstr "" #. type: Plain text #: src/acl/external/file_userip/ext_file_userip_acl.8:51 msgid "The configuration file format is as follows:" msgstr "" #. type: Plain text #: src/acl/external/file_userip/ext_file_userip_acl.8:60 msgid "" "Where B is a dotted quad format IP address, the B must be " "in dotted quad format too." msgstr "" #. type: Plain text #: src/acl/external/file_userip/ext_file_userip_acl.8:66 msgid "" "When the second parameter is prefixed with an B<@> , the program will lookup " "the B file entry for the specified username." msgstr "" #. type: Plain text #: src/acl/external/file_userip/ext_file_userip_acl.8:72 msgid "" "There are other two directives, B and B , which mean \"any user " "on this IP address may authenticate\" or \"no user on this IP address may " "authenticate\"." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:5 msgid "" "ext_kerberos_ldap_group_acl - Squid LDAP external acl group helper for " "Kerberos or NTLM credentials." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:7 msgid "Version 1.3.0sq" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:24 msgid "" "B is an installed binary and allows Squid to " "connect to a LDAP directory to authorize users via LDAP groups. Options are " "specified as parameters on the command line, while the username (e.g. " "B , B , B ) to be checked against the LDAP " "directory are specified on subsequent lines of input to the helper, one " "username per line." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:37 msgid "" "B will determine the ldap server name from DNS " "SRV and/or A records or a local hosts file (e.g. for the Kerberos Realm " "B it will look for an SRV record B<_ldap._tcp.SUSE.HOME> and an A " "record B or a B hosts entry). If no domain information " "is available from the username the LDAP server will be determined through " "the command line options." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:49 msgid "" "B requires as a minimum the B<-g> , B<-t> or " "B<-T> option which provides the LDAP group name the user has to belong " "too. For Active Directory a recursive group lookup is implemented until a " "max depth specified by B<-m> depth. For other LDAP servers a RFC2307bis " "schema of groups is assumed." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:62 msgid "" "Different group names can be specified for different domains using a " "group@domain syntax. As expected by the B construct of " "Squid, after specifying a username and group followed by a new line, this " "helper will produce either B or B on the following line to show if " "the user is a member of the specified group." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:70 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:24 msgid "Write debug messages to stderr." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:73 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:27 msgid "Write informational messages to stderr." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:76 msgid "Use SSL for the LDAP connection." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:78 msgid "" "The CA certificate file can be set via the environment variable " "TLS_CACERTFILE (default /etc/ssl/certs/cert.pem) (OpenLDAP)." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:80 msgid "" "The SSL certificate database can be set via the environment variable " "SSL_CERTDBPATH (default /etc/certs) (Sun and Mozilla LDAP SDK)." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:83 msgid "Allow SSL without certificate verification." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:87 msgid "" "Default Kerberos domain to use for usernames which do not contain domain " "information (e.g. for users using basic authentication)." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:92 msgid "" "A list of Netbios name mappings to Kerberos domain names of the form " "Netbios-Name@Kerberos-Realm[:Netbios-Name@Kerberos-Realm] (e.g. for users " "using NTLM authentication)." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:95 msgid "Maximal depth of recursive group search." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:98 msgid "Username for LDAP server." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:101 msgid "Password for LDAP server." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:106 msgid "" "As the password needs to be printed in plain text in your Squid " "configuration it is strongly recommended to use an account with minimal " "associated privileges. This to limit the damage in case someone could get " "hold of a copy of your Squid configuration file or extracts the password " "used from a process listing." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:110 msgid "LDAP server bind path." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:113 msgid "LDAP server URL in form ldap[s]://server:port" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:117 msgid "" "list of ldap servers of the form " "lserver|lserver@|lserver@Realm[:lserver@|lserver@Realm]" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:121 msgid "" "A list of group name per Kerberos domain of the form " "Group|Group@|Group@Realm[:Group@|Group@Realm]" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:126 msgid "" "A list of group name per Kerberos domain of the form " "Group|Group@|Group@Realm[:Group@|Group@Realm] where group is in UTF-8 hex " "format" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:131 msgid "" "A list of group name per Kerberos domain of the form " "Group|Group@|Group@Realm[:Group@|Group@Realm] where group and domain is in " "UTF-8 hex format" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:138 msgid "" "This helper is intended to be used as an B helper in " "B" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:153 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:62 msgid "B The following squid startup file modification may be required:" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:157 msgid "" "Add the following lines to the squid startup script to point squid to a " "keytab file which contains the HTTP/fqdn service principal for the default " "Kerberos domain. The fqdn must be the proxy name set in IE or firefox. You " "can not use an IP address." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:168 src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:74 msgid "" "If you use a different Kerberos domain than the machine itself is in you can " "point squid to the separate Kerberos config file by setting the following " "environment variable in the startup script." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:178 msgid "" "B will determine automagically the right ldap " "server. The following method is used:" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:183 #, no-wrap msgid "" "1) For user@REALM\n" " a) Query DNS for SRV record _ldap._tcp.REALM\n" " b) Query DNS for A record REALM\n" " c) Use LDAP_URL if given\n" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:187 #, no-wrap msgid "" "2) For user\n" " a) Use domain -D REALM and follow step 1)\n" " b) Use LDAP_URL if given\n" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:189 msgid "The Groups to check against are determined as follows:" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:194 #, no-wrap msgid "" "1) For user@REALM\n" " a) Use values given by -g option which contain a @REALM e.g. -g " "GROUP1@REALM:GROUP2@REALM\n" " b) Use values given by -g option which contain a @ only e.g. -g " "GROUP1@:GROUP2@\n" " c) Use values given by -g option which do not contain a realm e.g. -g " "GROUP1:GROUP2\n" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:197 #, no-wrap msgid "" "2) For user\n" " a) Use values given by -g option which do not contain a realm e.g. -g " "GROUP1:GROUP2\n" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:200 #, no-wrap msgid "" "3) For NDOMAIN\\euser\n" " a) Use realm given by -N NDOMAIN@REALM and then use values given by -g " "option which contain a @REALM e.g. -g GROUP1@REALM:GROUP2@REALM\n" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:202 msgid "" "To support Non-ASCII character use -t GROUP or -t GROUP@REALM instead of -g " "where GROUP is the hex UTF-8 representation e.g." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:204 #, no-wrap msgid " -t 6d61726b7573 instead of -g markus\n" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:206 msgid "" "The REALM must still be based on the ASCII character set. If REALM contains " "also non ASCII characters use -T GROUP@REALM where GROUP and REALM are hex " "UTF-8 representation e.g." msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:208 #, no-wrap msgid "" " -T 6d61726b7573@57494e3230303352322e484f4d45 instead of -g " "markus@WIN2003R2.HOME\n" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:210 msgid "" "For a translation of hex UTF-8 see for example " "http://www.utf8-chartable.de/unicode-utf8-table.pl" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:216 msgid "" "The ldap server list can be: server - In this case server can be used for " "all Kerberos domains server@ - In this case server can be used for all " "Kerberos domains server@domain - In this case server can be used for " "Kerberos domain domain " "server1a@domain1:server1b@domain1:server2@domain2:server3@:server4 - A list " "is build with a colon as separator" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:232 #, no-wrap msgid "" " * Copyright (C) 1996-2015 The Squid Software Foundation and contributors\n" " *\n" " * Squid software is distributed under GPLv2+ license and includes\n" " * contributions from numerous individuals and organizations.\n" " * Please see the COPYING and CONTRIBUTORS files for details.\n" msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:260 msgid "B - Domain names - implementation and specification," msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:262 msgid "B - A DNS RR for specifying the location of services (DNS SRV)," msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:264 src/acl/external/LDAP_group/ext_ldap_group_acl.8:285 src/auth/basic/LDAP/basic_ldap_auth.8:347 msgid "B - The String Representation of LDAP Search Filters," msgstr "" #. type: Plain text #: src/acl/external/kerberos_ldap_group/ext_kerberos_ldap_group_acl.8:267 msgid "" "B - An Approach for Using LDAP as a Network Information Service " "http://www.padl.com/~lukeh/rfc2307bis.txt,\"" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:5 msgid "ext_ldap_group_acl - Squid LDAP external acl group helper" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:7 msgid "Version 2.18" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:12 msgid "base-DN" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:16 src/auth/basic/LDAP/basic_ldap_auth.8:14 src/auth/basic/LDAP/basic_ldap_auth.8:29 msgid "options" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:18 msgid "server" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:22 src/auth/basic/LDAP/basic_ldap_auth.8:20 src/auth/basic/LDAP/basic_ldap_auth.8:35 msgid "URI" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:31 msgid "" "B allows Squid to connect to a LDAP directory to " "authorize users via LDAP groups. LDAP options are specified as parameters " "on the command line, while the username(s) and group(s) to be checked " "against the LDAP directory are specified on subsequent lines of input to the " "helper, one username/group pair per line separated by a space." msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:42 msgid "" "As expected by the B construct of Squid, after specifying " "a username and group followed by a new line, this helper will produce either " "B or B on the following line to show if the user is a member of the " "specified group." msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:46 msgid "" "The program operates by searching with a search filter based on the users " "user name and requested group, and if a match is found it is determined that " "the user belongs to the group." msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:51 msgid "When to dereference aliases. Defaults to 'never'" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:60 msgid "" "B dereference aliases (default), B dereference aliases, only " "during a B or only to B the base object" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:65 msgid "B Specifies the base DN under which the groups are located." msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:69 msgid "Specifies the base DN under which the users are located (if different)" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:74 msgid "" "Specify timeout used when connecting to LDAP servers (requires Netscape LDAP " "API libraries)" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:80 msgid "" "Debug mode where each step taken will get reported in detail. Useful for " "understanding what goes wrong if the result is not what was expected." msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:85 msgid "" "The DN and password to bind as while performing searches. Required if the " "LDAP directory does not allow anonymous searches." msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:91 msgid "" "As the password needs to be printed in plain text in your Squid " "configuration and will be sent on the command line to the helper it is " "strongly recommended to use a account with minimal associated privileges. " "This to limit the damage in case someone could get hold of a copy of your " "Squid configuration file or extracts the password used from a process " "listing." msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:96 src/auth/basic/LDAP/basic_ldap_auth.8:150 msgid "" "The DN and the name of a file containing the password to bind as while " "performing searches." msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:101 src/auth/basic/LDAP/basic_ldap_auth.8:155 msgid "" "Less insecure version of the former parameter pair with two advantages: The " "password does not occur in the process listing, and the password is not " "being compromised if someone gets the squid configuration file without " "getting the secretfile." msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:105 src/auth/basic/LDAP/basic_ldap_auth.8:224 msgid "Enable LDAP over SSL (requires Netscape LDAP API libraries)" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:121 msgid "" "LDAP search filter used to search the LDAP directory for any matching group " "memberships. In the filter B<%u> will be replaced by the user name (or DN " "if the B<-F> or B<-u> options are used) and B<%g> by the requested group " "name." msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:133 msgid "" "LDAP search filter used to search the LDAP directory for any matching " "users. In the filter B<%s> will be replaced by the user name. If B<%> is to " "be included literally in the filter then use B<%%>" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:139 msgid "" "Specifies that the first query argument sent to the helper by Squid is a " "extension to the basedn and will be temporarily added in front of the global " "basedn for this query." msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:143 msgid "Specify the LDAP server to connect to" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:147 msgid "" "Specify the LDAP server to connect to by a LDAP URI (requires OpenLDAP " "libraries)" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:151 msgid "Strip Kerberos Realm component from user names (@ separated)" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:156 msgid "" "Specify an alternate TCP port where the LDAP server is listening if other " "than the default LDAP port 389." msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:164 msgid "" "Use a persistent LDAP connection. Normally the LDAP connection is only open " "while verifying a users group membership to preserve resources at the LDAP " "server. This option causes the LDAP connection to be kept open, allowing it " "to be reused for further user validations. Recommended for larger " "installations." msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:168 src/auth/basic/LDAP/basic_ldap_auth.8:180 msgid "Do not follow referrals" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:186 src/acl/external/unix_group/ext_unix_group_acl.8:33 msgid "Strip NT domain name component from user names (/ or \\e separated)" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:190 src/auth/basic/LDAP/basic_ldap_auth.8:235 msgid "Specify time limit on LDAP search operations" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:198 msgid "" "LDAP attribute used to construct the user DN from the user name and base dn " "without needing to search for the user. A maximum of 16 occurrences of " "B<%s> are supported." msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:204 src/auth/basic/LDAP/basic_ldap_auth.8:216 msgid "LDAP protocol version. Defaults to B<3> if not specified." msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:208 src/auth/basic/LDAP/basic_ldap_auth.8:220 msgid "Use TLS encryption" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:214 msgid "" "This helper is intended to be used as an B helper in " "B" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:229 msgid "" "B When constructing search filters it is recommended to first test " "the filter using B to verify that the filter matches what you " "expect before you attempt to use B" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:238 msgid "Based on prior work in B by" msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:262 msgid "" "Or contact your favorite LDAP list/friend if the question is more related to " "LDAP than Squid." msgstr "" #. type: Plain text #: src/acl/external/LDAP_group/ext_ldap_group_acl.8:283 msgid "Your favorite LDAP documentation" msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:5 msgid "" "ext_lm_group_acl - Squid external ACL helper to check Windows users group " "membership." msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:7 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:7 msgid "Version 1.22" msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:17 msgid "B is an installed binary in Squid for Windows builds." msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:20 msgid "" "This helper must be used in with an authentication scheme (typically Basic " "or NTLM) based on Windows NT/2000 domain users (LM mode)." msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:29 msgid "Use case insensitive compare." msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:37 msgid "Specify the default user's domain." msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:41 msgid "Start helper in Domain Global Group mode." msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:49 msgid "Use ONLY PDCs for group validation." msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:75 msgid "" "In the previous example all validated NT users member of GProxyUsers Global " "domain group or member of LProxyUsers machine local group are allowed to use " "the cache." msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:83 msgid "" "Groups with spaces in name, for example B , must be quoted and " "the acl data ( B ) must be placed into a separate file " "included by specifying B" msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:85 msgid "The previous example will be:" msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:92 msgid "The B file will contain only the following line:" msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:94 msgid "B" msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:103 msgid "" "B The standard group name comparison is case sensitive, so group name " "must be specified with same case as in the NT/2000 Domain. It's possible to " "enable case insensitive group name comparison ( B<-c> ), but on some " "not-english locales, the results can be unexpected." msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:111 msgid "" "B Native WIN32 NTLM and Basic Helpers must be used without the B<-A> " "and B<-D> switches." msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:113 msgid "Refer to Squid documentation for the more details on squid.conf." msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:119 msgid "" "I strongly recommend that B is tested prior to being used " "in a production environment. It may behave differently on different " "platforms." msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:159 msgid "with contributions by" msgstr "" #. type: Plain text #: src/acl/external/LM_group/ext_lm_group_acl.8:164 msgid "Based in part on prior work in B by" msgstr "" #. type: Plain text #: src/acl/external/session/ext_session_acl.8:5 msgid "ext_session_acl - Squid session tracking external acl helper." msgstr "" #. type: Plain text #: src/acl/external/session/ext_session_acl.8:7 msgid "Version 1.2" msgstr "" #. type: Plain text #: src/acl/external/session/ext_session_acl.8:12 src/auth/basic/RADIUS/basic_radius_auth.8:22 tools/squidclient/squidclient.1:32 msgid "timeout" msgstr "" #. type: Plain text #: src/acl/external/session/ext_session_acl.8:14 msgid "database" msgstr "" #. type: Plain text #: src/acl/external/session/ext_session_acl.8:31 msgid "" "B maintains a concept of sessions by monitoring requests " "and timing out sessions. The timeout is based either on idle use ( B<-t> ) " "or a fixed period of time ( B<-T> ). The former is suitable for displaying " "terms and conditions to a user; the latter is suitable for the display of " "advertisements or other notices (both as a splash page - see config examples " "in the wiki online). The session helper can also be used to force users to " "re-authenticate if the B<%LOGIN> and B<-a> are both used." msgstr "" #. type: Plain text #: src/acl/external/session/ext_session_acl.8:36 msgid "" "Idle timeout for any session. The default if not specified (set to 3600 " "seconds)." msgstr "" #. type: Plain text #: src/acl/external/session/ext_session_acl.8:49 msgid "" "Fixed timeout for any session. This will end the session after the timeout " "regardless of a user's activity. If used with B mode, this will " "terminate the user's session after B , after which another B " "will be required. B will reset the session and timeout." msgstr "" #. type: Plain text #: src/acl/external/session/ext_session_acl.8:62 msgid "" "B to persistent database. If a file is specified then that single file " "is used as the database. If a path is specified, a Berkeley DB database " "environment is created within the directory. The advantage of the latter is " "better database support between multiple instances of the session " "helper. Using multiple instances of the session helper with a single " "database file will cause synchronization problems between processes. If " "this option is not specified the session details will be kept in memory only " "and all sessions will reset each time Squid restarts its helpers (Squid " "restart or rotation of logs)." msgstr "" #. type: Plain text #: src/acl/external/session/ext_session_acl.8:72 msgid "" "Active mode. In this mode sessions are started by evaluating an acl with the " "argument B , or terminated by the argument B Without this " "flag the helper automatically starts the session after the first request." msgstr "" #. type: Plain text #: src/acl/external/session/ext_session_acl.8:79 msgid "" "The B helper is a concurrent helper; therefore, the " "concurrency= option B be specified in the configuration." msgstr "" #. type: Plain text #: src/acl/external/session/ext_session_acl.8:81 msgid "Passive session configuration example using the default automatic mode" msgstr "" #. type: Plain text #: src/acl/external/session/ext_session_acl.8:94 msgid "" "Then set up B to display a " "session startup page and then redirect the user back to the requested URL " "given in the url query parameter." msgstr "" #. type: Plain text #: src/acl/external/session/ext_session_acl.8:97 src/acl/external/time_quota/ext_time_quota_acl.8:216 src/auth/basic/PAM/basic_pam_auth.8:80 msgid "This program and documentation was written by" msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:5 msgid "ext_time_quota_acl - Squid time quota external acl helper." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:16 msgid "" "B allows an administrator to define time budgets for the " "users of squid to limit the time using squid." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:21 msgid "" "This is useful for corporate lunch time allocations, wifi portal " "pay-per-minute installations or for parental control of children. The " "administrator can define a time budget (e.g. 1 hour per day) which is " "enforced through this helper." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:29 msgid "" "B of persistent database. This defaults to ext_time_quota.db in " "Squids state directory." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:36 msgid "" "B is given in seconds and defines the period between two requests " "to be treated as part of the same session. Pauses shorter than this value " "will be counted against the quota, longer ones ignored. Default is 300 " "seconds (5 minutes)." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:42 msgid "" "B where all logging and debugging information will be written. If " "none is given, then stderr will be used and the logging will go to Squids " "main cache.log." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:46 msgid "Enables debug logging in the logfile." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:50 msgid "show a short command line help." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:54 msgid "This file contains the definition of the time budgets for the users." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:63 msgid "" "The time quotas of the users are defined in a text file typically residing " "in /etc/squid/time_quota. Any line starting with \"#\" contains a comment " "and is ignored. Every line must start with a user followed by a time budget " "and a corresponding time period separated by \"/\". Here is an example file:" msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:66 msgid "# user budget / period" msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:77 msgid "" "John has a time budget of 8 hours every day, littlejoe is only allowed 1 " "hour and the poor babymary only 30 minutes a week." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:81 msgid "" "You can use \"s\" for seconds, \"m\" for minutes, \"h\" for hours, \"d\" for " "days and \"w\" for weeks. Numerical values can be given as integer values or " "with a fraction. E.g. \"0.5h\" means 30 minutes." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:87 msgid "" "This helper is configured in B using the B " "directive then access controls which use it to allow or deny." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:90 msgid "Here is an example." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:93 msgid "# Ensure that users have a valid login. We need their username." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:100 msgid "# Define program and quota file" msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:116 msgid "" "In this example, after restarting Squid it should allow access only for " "users as long as they have time budget left. If the budget is exceeded the " "user will be presented with an error page informing them." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:122 msgid "" "In this example we use separate B access control and B ACL " "in order to keep the username and password prompt and the quota-exceeded " "messages separated." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:142 msgid "" "User is just a unique key value. The above example uses %LOGIN and the " "username but any of the B format tags can be substituted " "in its place. B<%EXT_TAG> , B<%LOGIN> , B<%EXT_USER> , B<%SRC> " ", B<%SRCEUI48> , and B<%SRCEUI64> are all likely candidates for client " "identification. The Squid wiki has more examples at " "https://wiki.squid-cache.org/ConfigExamples." msgstr "" #. type: SH #: src/acl/external/time_quota/ext_time_quota_acl.8:143 #, no-wrap msgid "LIMITATIONS" msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:148 msgid "" "This helper only controls access to the Internet through HTTP. It does not " "control other protocols, like VOIP, ICQ, IRC, FTP, IMAP, SMTP or SSH." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:156 msgid "" "Desktop browsers are typically able to deal with authentication to HTTP " "proxies like B But more and more different programs and devices " "(smartphones, games on mobile devices, ...) are using the Internet over " "HTTP. These devices are often not able to work through an authenticating " "proxy. Means other than %LOGIN authentication are required to authorize " "these devices and software." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:161 msgid "" "A more general control to Internet access could be a captive portal approach " "(such as pfSense or ChilliSpot) using %SRC, %SRCEUI48 and %SRCEUI64 as keys " "or maybe a 802.11X solution. But the latter is often not supported by mobile " "devices." msgstr "" #. type: SH #: src/acl/external/time_quota/ext_time_quota_acl.8:162 #, no-wrap msgid "IMPLEMENTATION" msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:170 msgid "" "When the helper is called it will be asked if the current user is allowed to " "access squid. The helper will reduce the remaining time budget of this user " "and return B if there is budget left. Otherwise it will return B" msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:183 msgid "" "The B parameter in B determines how often the helper will " "be called, the example config uses a 1 minute TTL. The interaction is that " "Squid will only call the helper on new requests B there has been more " "than TTL seconds passed since last check. This handling creates an amount " "of slippage outside the quota by whatever amount is configured. TTL can be " "set as short as desired, down to and including zero. Though values of 1 or " "more are recommended due to a quota resolution of one second." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:188 msgid "" "If the configured time period (e.g. \"1w\" for babymary) is over, the time " "budget will be restored to the configured value thus allowing the user to " "access squid with a fresh budget." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:200 msgid "" "If the time between the current request and the previous request is greater " "than B (default 5 minutes and adjustable with command line " "parameter B<-p> ), the current request will be considered as a new request " "and the time budget will not be decreased. If the time is less than " "B , then both requests will be considered as part of the same " "active time period and the time budget will be decreased by the time " "difference. This allows the user to take arbitrary breaks during Internet " "access without losing their time budget." msgstr "" #. type: SH #: src/acl/external/time_quota/ext_time_quota_acl.8:201 #, no-wrap msgid "FURTHER IDEAS" msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:204 msgid "" "The following ideas could further improve this helper. Maybe someone wants " "to help? Any support or feedback is welcome!" msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:209 msgid "" "There should be a way for a user to see their configured and remaining time " "budget. This could be realized by implementing a web page accessing the " "database of the helper showing the corresponding data. One of the problems " "to be solved is user authentication." msgstr "" #. type: Plain text #: src/acl/external/time_quota/ext_time_quota_acl.8:212 msgid "" "We could always return \"OK\" and use the module simply as an Internet usage " "tracker showing who has stayed how long in the WWW." msgstr "" #. type: Plain text #: src/acl/external/unix_group/ext_unix_group_acl.8:5 msgid "ext_unix_group_acl - Squid UNIX Group ACL helper" msgstr "" #. type: Plain text #: src/acl/external/unix_group/ext_unix_group_acl.8:9 src/acl/external/unix_group/ext_unix_group_acl.8:11 msgid "group" msgstr "" #. type: Plain text #: src/acl/external/unix_group/ext_unix_group_acl.8:16 msgid "" "B allows Squid to base access controls on users " "memberships in UNIX groups." msgstr "" #. type: Plain text #: src/acl/external/unix_group/ext_unix_group_acl.8:24 msgid "Specifies a group name to match." msgstr "" #. type: Plain text #: src/acl/external/unix_group/ext_unix_group_acl.8:29 msgid "Also match the users primary group from B" msgstr "" #. type: Plain text #: src/acl/external/unix_group/ext_unix_group_acl.8:47 msgid "" "This B example defines two Squid acls. I matches " "users in I , and I matches users in I or " "I" msgstr "" #. type: Plain text #: src/acl/external/unix_group/ext_unix_group_acl.8:59 msgid "" "By default up to 11 groups can be matched in one acl (including commandline " "specified groups). This limit is defined by B in the source " "code." msgstr "" #. type: Plain text #: src/acl/external/unix_group/ext_unix_group_acl.8:65 msgid "" "Does not understand GID aliased groups sometimes used to work around groups " "size limitations. If you are using GID aliased groups then you must specify " "each alias by name." msgstr "" #. type: Plain text #: src/acl/external/unix_group/ext_unix_group_acl.8:104 msgid "Additionally bugs or bug-fixes can be reported to" msgstr "" #. type: Plain text #: src/auth/basic/getpwnam/basic_getpwnam_auth.8:5 msgid "basic_getpwnam_auth - Local Users auth helper for Squid" msgstr "" #. type: Plain text #: src/auth/basic/getpwnam/basic_getpwnam_auth.8:13 msgid "" "B allows Squid to authenticate any local user accounts " "to validate the user name and password of Basic HTTP authentication." msgstr "" #. type: Plain text #: src/auth/basic/getpwnam/basic_getpwnam_auth.8:19 msgid "It uses B and B routines for authentication." msgstr "" #. type: Plain text #: src/auth/basic/getpwnam/basic_getpwnam_auth.8:21 msgid "This has the following advantages over the NCSA module:" msgstr "" #. type: Plain text #: src/auth/basic/getpwnam/basic_getpwnam_auth.8:23 msgid "- Allows authentication of all known local users" msgstr "" #. type: Plain text #: src/auth/basic/getpwnam/basic_getpwnam_auth.8:26 msgid "- Allows authentication through nsswitch.conf" msgstr "" #. type: Plain text #: src/auth/basic/getpwnam/basic_getpwnam_auth.8:29 msgid "- Can handle NIS(+) requests" msgstr "" #. type: Plain text #: src/auth/basic/getpwnam/basic_getpwnam_auth.8:32 msgid "- Can handle LDAP requests" msgstr "" #. type: Plain text #: src/auth/basic/getpwnam/basic_getpwnam_auth.8:35 msgid "- Can handle PAM requests" msgstr "" #. type: Plain text #: src/auth/basic/getpwnam/basic_getpwnam_auth.8:50 msgid "" "When used for authenticating to local UNIX shadow password databases the " "program must be running as root or else it won't have sufficient permissions " "to access the user password database. Such use of this program is not " "recommended, but if you absolutely need to then make the program B " "B" msgstr "" #. type: Plain text #: src/auth/basic/getpwnam/basic_getpwnam_auth.8:62 src/auth/basic/PAM/basic_pam_auth.8:77 msgid "" "Please note that in such configurations it is also strongly recommended that " "the program is moved into a directory where normal users cannot access it, " "as this mode of operation will allow any local user to brute-force other " "users passwords. Also note the program has not been fully audited and the " "author cannot be held responsible for any security issues due to such " "installations." msgstr "" #. type: Plain text #: src/auth/basic/getpwnam/basic_getpwnam_auth.8:70 msgid "Based on original code by" msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:5 msgid "basic_ldap_auth - LDAP authentication helper for Squid" msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:10 src/auth/basic/LDAP/basic_ldap_auth.8:25 msgid "base DN" msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:12 msgid "attribute" msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:16 src/auth/basic/LDAP/basic_ldap_auth.8:31 msgid "LDAP server name" msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:27 msgid "LDAP search filter" msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:45 msgid "" "B allows Squid to connect to a LDAP directory to validate " "the user name and password of Basic HTTP authentication. LDAP options are " "specified as parameters on the command line, while the username(s) and " "password(s) to be checked against the LDAP directory are specified on " "subsequent lines of input to the helper, one username/password pair per line " "separated by a space." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:54 msgid "" "As expected by the basic authentication construct of Squid, after specifying " "a username and password followed by a new line, this helper will produce " "either B or B on the following line to show if the specified " "credentials are correct according to the LDAP directory." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:59 msgid "" "The program has two major modes of operation. In the default mode of " "operation the users DN is constructed using the base DN and user " "attribute. In the other mode of operation a search filter is used to locate " "valid user DN's below the base DN." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:65 msgid "B Specifies the base DN under which the users are located." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:73 msgid "" "LDAP search B to locate the user DN. Required if the users are in a " "hierarchy below the base DN, or if the login name is not what builds the " "user specific part of the users DN." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:80 msgid "" "The search filter can contain up to 15 occurrences of B<%s> which will be " "replaced by the username, as in B<\"uid\\=%s\"> for RFC2037 directories. For " "a detailed description of LDAP search filter syntax see RFC2254." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:88 msgid "" "Will crash if other B<%> values than B<%s> are used, or if more than 15 " "B<%s> are used." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:97 msgid "" "Specifies the name of the DN attribute that contains the username/login. " "Combined with the base DN to construct the users DN when no search filter is " "specified ( B<-f> option). Defaults to B" msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:106 msgid "" "B This can only be done if all your users are located directly under " "the same position in the LDAP tree and the login name is used for naming " "each user object. If your LDAP tree does not match these criteria or if you " "want to filter who are valid users then you need to use a search filter to " "search for your users DN ( B<-f> option)." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:116 msgid "" "Use I instead of I to verify the users " "password. B is the LDAP attribute storing the users password." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:124 msgid "" "Search scope when performing user DN searches specified by the B<-f> " "option. Defaults to B" msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:140 msgid "" "The DN and password to bind as while performing searches. Required by the " "B<-f> flag if the directory does not allow anonymous searches." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:145 msgid "" "As the password needs to be printed in plain text in your Squid " "configuration it is strongly recommended to use a account with minimal " "associated privileges. This to limit the damage in case someone could get " "hold of a copy of your Squid configuration file." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:163 msgid "" "Use a persistent LDAP connection. Normally the LDAP connection is only open " "while validating a username to preserve resources at the LDAP server. This " "option causes the LDAP connection to be kept open, allowing it to be reused " "for further user validations. Recommended for larger installations." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:176 msgid "" "Only bind once per LDAP connection. Some LDAP servers do not allow " "re-binding as another user after a successful I The use of this " "option always opens a new connection for each login attempt. If combined " "with the B<-P> option for persistent LDAP connection then the connection " "used for searching for the user DN is kept persistent but a new connection " "is opened to verify each users password once the DN is found." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:185 msgid "when to dereference aliases. Defaults to B" msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:194 msgid "" "B dereference aliases (default), B dereference aliases, only " "during a B or only to B the base object." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:199 msgid "" "Specify the LDAP server to connect to by LDAP URI (requires OpenLDAP " "libraries). Servers can also be specified last on the command line." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:204 msgid "" "Specify the LDAP server to connect to. Servers can also be specified last on " "the command line." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:210 msgid "" "Specify an alternate TCP port where the LDAP server is listening if other " "than the default LDAP port 389. Can also be specified within the server " "specification by using servername:port syntax." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:231 msgid "" "Specify B used when connecting to LDAP servers (requires Netscape " "LDAP API libraries)" msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:241 msgid "" "Debug mode where each step taken will get reported in detail. Useful for " "understanding what goes wrong if the results is not what is expected." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:246 msgid "" "For directories using the RFC2307 layout with a single domain, all you need " "to specify is usually the base DN under where your users are located and the " "server name:" msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:254 msgid "" "If you have sub-domains then you need to use a search filter approach to " "locate your user DNs as these can no longer be constructed directly from the " "base DN and login name alone:" msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:261 msgid "" "And similarly if you only want to allow access to users having a specific " "attribute" msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:272 msgid "" "Or if the user attribute of the user DN is B instead of B and you " "do not want to have to search for the users then you could use something " "like the following example for Active Directory:" msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:284 msgid "" "If you want to search for the user DN and your directory does not allow " "anonymous searches then you must also use the B<-D> and B<-w> flags to " "specify a user DN and password to log in as to perform the searches, as in " "the following complex Active Directory example" msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:297 msgid "" "B When constructing search filters it is strongly recommended to test " "the filter using B before you attempt to use B " "This to verify that the filter matches what you expect." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:300 src/auth/basic/RADIUS/basic_radius_auth.8:89 msgid "This program is written by" msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:304 msgid "This manual is written by" msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:325 msgid "" "Or to your favorite LDAP list/friend if the question is more related to LDAP " "than Squid." msgstr "" #. type: Plain text #: src/auth/basic/LDAP/basic_ldap_auth.8:345 msgid "Your favorite LDAP documentation." msgstr "" #. type: Plain text #: src/auth/basic/NCSA/basic_ncsa_auth.8:5 msgid "" "basic_ncsa_auth - NCSA httpd-style password file authentication helper for " "Squid" msgstr "" #. type: Plain text #: src/auth/basic/NCSA/basic_ncsa_auth.8:9 msgid "passwd file" msgstr "" #. type: Plain text #: src/auth/basic/NCSA/basic_ncsa_auth.8:14 msgid "" "B allows Squid to read and authenticate user and password " "information from an NCSA/Apache httpd-style password file when using basic " "HTTP authentication." msgstr "" #. type: Plain text #: src/auth/basic/NCSA/basic_ncsa_auth.8:17 msgid "This password file can be manipulated using B" msgstr "" #. type: Plain text #: src/auth/basic/NCSA/basic_ncsa_auth.8:30 #, no-wrap msgid "" "This authenticator accepts:\n" "\n" " * Blowfish - for passwords 72 characters or less in length.\n" "\n" " * SHA256 - with salting and magic strings.\n" "\n" " * SHA512 - with salting and magic strings.\n" "\n" " * MD5 - with optional salt and magic strings.\n" "\n" " * DES - for passwords 8 characters or less in length.\n" msgstr "" #. type: Plain text #: src/auth/basic/NCSA/basic_ncsa_auth.8:32 msgid "NOTE: Blowfish and SHA algorithms require system-specific support." msgstr "" #. type: Plain text #: src/auth/basic/NCSA/basic_ncsa_auth.8:36 msgid "" "The only parameter is the password file. It must have permissions to be " "read by the user that Squid is running as." msgstr "" #. type: Plain text #: src/auth/basic/NCSA/basic_ncsa_auth.8:44 msgid "B must have access to the password file to be executed." msgstr "" #. type: Plain text #: src/auth/basic/NCSA/basic_ncsa_auth.8:50 msgid "" "DES functionality (used by htpasswd by default) silently truncates passwords " "to 8 characters. Allowing login with password values shorter than the one " "desired. This authenticator will reject login with long passwords when " "using DES." msgstr "" #. type: Plain text #: src/auth/basic/NCSA/basic_ncsa_auth.8:56 msgid "Based on original documentation by" msgstr "" #. type: Plain text #: src/auth/basic/NCSA/basic_ncsa_auth.8:70 msgid "" "This file is distributed in the hope that it will be useful, but WITHOUT ANY " "WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS " "FOR A PARTICULAR PURPOSE. See the GNU General Public License for more " "details." msgstr "" #. type: Plain text #: src/auth/basic/NCSA/basic_ncsa_auth.8:76 msgid "" "You should have received a copy of the GNU General Public License along with " "this file; if not, write to the Free Software Foundation, Inc., 59 Temple " "Place, Suite 330, Boston, MA 02111-1307 USA" msgstr "" #. type: Plain text #: src/auth/basic/PAM/basic_pam_auth.8:5 msgid "basic_pam_auth - PAM Basic authentication helper for Squid" msgstr "" #. type: Plain text #: src/auth/basic/PAM/basic_pam_auth.8:9 msgid "service name" msgstr "" #. type: Plain text #: src/auth/basic/PAM/basic_pam_auth.8:11 msgid "TTL" msgstr "" #. type: Plain text #: src/auth/basic/PAM/basic_pam_auth.8:18 msgid "" "B allows Squid to connect to a mostly any available PAM " "database to validate the user name and password of Basic HTTP " "authentication." msgstr "" #. type: Plain text #: src/auth/basic/PAM/basic_pam_auth.8:24 msgid "Specifies the PAM service name Squid uses, defaults to B" msgstr "" #. type: Plain text #: src/auth/basic/PAM/basic_pam_auth.8:33 msgid "" "Enables persistent PAM connections where the connection to the PAM database " "is kept open and reused for new logins. The TTL specifies how long the " "connection will be kept open (in seconds). Default is to not keep PAM " "connections open. Please note that the use of persistent PAM connections is " "slightly outside the PAM specification and may not work with all PAM " "configurations." msgstr "" #. type: Plain text #: src/auth/basic/PAM/basic_pam_auth.8:38 msgid "Do not perform the PAM account management group (account expiration etc)" msgstr "" #. type: Plain text #: src/auth/basic/PAM/basic_pam_auth.8:44 msgid "" "The program needs a PAM service to be configured in B or " "B" msgstr "" #. type: Plain text #: src/auth/basic/PAM/basic_pam_auth.8:52 msgid "" "The default service name is B , and the program makes use of the " "B and B management groups to verify the password and the " "accounts validity." msgstr "" #. type: Plain text #: src/auth/basic/PAM/basic_pam_auth.8:56 msgid "" "For details on how to configure PAM services, see the PAM documentation for " "your system. This manual does not cover PAM configuration details." msgstr "" #. type: SH #: src/auth/basic/PAM/basic_pam_auth.8:57 #, no-wrap msgid "NOTES" msgstr "" #. type: Plain text #: src/auth/basic/PAM/basic_pam_auth.8:64 msgid "" "When used for authenticating to local UNIX shadow password databases the " "program must be running as root or else it won't have sufficient permissions " "to access the user password database. Such use of this program is not " "recommended, but if you absolutely need to then make the program setuid root" msgstr "" #. type: Plain text #: src/auth/basic/PAM/basic_pam_auth.8:93 msgid "Squid B and this manual is Copyright 1999,2002,2003" msgstr "" #. type: Plain text #: src/auth/basic/PAM/basic_pam_auth.8:124 msgid "PAM Systems Administrator Guide" msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:5 msgid "basic_radius_auth - Squid RADIUS authentication helper" msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:10 msgid "config file" msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:14 msgid "server name" msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:18 msgid "identifier" msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:20 msgid "secret" msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:28 msgid "" "B allows Squid to connect to a RADIUS server to validate " "the user name and password of Basic HTTP authentication." msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:34 msgid "" "Specifies the path to a configuration file. See the CONFIGURATION section " "for details on the file content." msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:38 msgid "Alternative method of specifying the server to connect to" msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:43 msgid "" "Specify another server port where the RADIUS server listens for requests if " "different from the default RADIUS port. Normally not specified." msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:48 msgid "" "Unique identifier identifying this Squid proxy to the RADIUS server. If not " "specified the IP address is used to identify the proxy." msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:54 msgid "" "Alternative method of specifying the shared secret. Using the B<-f> option " "with a configuration file is generally more secure and recommended." msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:58 msgid "RADIUS request timeout. Default is 10 seconds." msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:65 msgid "" "The configuration specifies how the helper connects to RADIUS. The file " "contains a list of directives (one per line). Lines beginning with a B<#> " "are ignored." msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:69 msgid "specifies the name or address of the RADIUS server to connect to." msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:73 msgid "specifies the shared RADIUS secret." msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:78 msgid "" "specifies what name the proxy should use to identify itself to the RADIUS " "server. This directive is optional." msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:82 msgid "Specifies the port number or service name where the helper should connect." msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:86 msgid "Specifies the RADIUS request timeout." msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:93 msgid "With contributions from many others." msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:116 msgid "" "Or contact your favorite RADIUS list/friend if the question is more related " "to RADIUS than Squid." msgstr "" #. type: Plain text #: src/auth/basic/RADIUS/basic_radius_auth.8:135 msgid "B - Remote Authentication Dial In User Service (RADIUS)" msgstr "" #. type: Plain text #: src/auth/basic/SASL/basic_sasl_auth.8:5 msgid "" "basic_sasl_auth - Basic Authentication using SASL (specifically the " "cyrus-sasl authentication method)" msgstr "" #. type: Plain text #: src/auth/basic/SASL/basic_sasl_auth.8:16 msgid "" "B is an installed binary helper for Squid. SASL is " "configurable (somewhat like PAM). Each service authenticating against SASL " "identifies itself with an application name. Each application can be " "configured independently by the SASL administrator." msgstr "" #. type: Plain text #: src/auth/basic/SASL/basic_sasl_auth.8:22 msgid "" "To configure the authentication method used the file B " "can be placed in the appropriate location, usually B" msgstr "" #. type: Plain text #: src/auth/basic/SASL/basic_sasl_auth.8:29 msgid "" "The authentication database is defined by the B parameter. " "Only the B authentication mechanism is used." msgstr "" #. type: Plain text #: src/auth/basic/SASL/basic_sasl_auth.8:31 msgid "Examples:" msgstr "" #. type: Plain text #: src/auth/basic/SASL/basic_sasl_auth.8:34 msgid "use sasldb - the default if no conf file is installed." msgstr "" #. type: Plain text #: src/auth/basic/SASL/basic_sasl_auth.8:36 #, no-wrap msgid " - use PAM authentication database\n" msgstr "" #. type: Plain text #: src/auth/basic/SASL/basic_sasl_auth.8:39 #, no-wrap msgid "" " - use traditional \n" "B\n" msgstr "" #. type: Plain text #: src/auth/basic/SASL/basic_sasl_auth.8:41 #, no-wrap msgid " - use slightly less traditional /etc/shadow\n" msgstr "" #. type: Plain text #: src/auth/basic/SASL/basic_sasl_auth.8:44 msgid "" "Others methods may be supported by your cyrus-sasl implementation - consult " "your cyrus-sasl documentation for information." msgstr "" #. type: Plain text #: src/auth/basic/SASL/basic_sasl_auth.8:57 msgid "" "Typically the authentication database ( B , B , " "B ) can not be accessed by a normal user. You should use setuid/setgid " "and an appropriate user/group on the executable to allow the authenticator " "to access the appropriate password database. If the access to the database " "is not permitted then the authenticator will typically fail with \"-1, " "generic error\"." msgstr "" #. type: Plain text #: src/auth/basic/SASL/basic_sasl_auth.8:72 msgid "" "If the application name B will also be used for the PAM " "service name if B is chosen. And example PAM " "configuration file B is also included." msgstr "" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:5 msgid "basic_sspi_auth.exe - Basic authentication protocol" msgstr "" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:12 src/auth/basic/SSPI/basic_sspi_auth.8:14 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:12 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:14 msgid "Group Name" msgstr "" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:16 msgid "Default Domain" msgstr "" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:22 msgid "" "B is a simple authentication module for the Squid proxy " "server running on Windows NT to authenticate users on an NT domain in native " "WIN32 mode." msgstr "" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:31 msgid "" "Usage is simple. It accepts a username and password on standard input and " "will return B if the username/password is valid for the domain/machine, " "or B if there was some problem. It is possible to authenticate against " "NT trusted domains specifying the username in the domain\\eusername " "Microsoft notation." msgstr "" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:36 msgid "A Windows Local Group name allowed to authenticate." msgstr "" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:44 msgid "A Windows Local Group name not allowed to authenticate." msgstr "" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:48 msgid "The default Domain against to authenticate." msgstr "" #. logon from the network\"" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:55 msgid "" "Users that are allowed to access the web proxy must have the Windows NT User " "Rights I<\\&\\&> and must be included in the NT LOCAL User Groups specified " "in the Authenticator's command line." msgstr "" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:58 msgid "" "This can be accomplished creating a local user group on the NT machine, " "grant the privilege, and adding users to it." msgstr "" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:63 msgid "" "You will need to set the following line in B to enable the " "authenticator:" msgstr "" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:71 msgid "" "You will need to set the following lines in B to enable " "authentication for your access list:" msgstr "" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:83 msgid "" "You will need to specify the absolute path to B in the " "B directive." msgstr "" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:98 #, no-wrap msgid "" "I strongly urge that \n" "B\n" "is tested prior to being used in a \n" "production environment. It may behave differently on different platforms.\n" "To test it, run it from the command line. Enter username and password\n" "pairs separated by a space. Press ENTER to get an OK or ERR message.\n" "Make sure pressing \n" "B\n" " behaves the same as a carriage return.\n" "Make sure pressing \n" "B\n" " aborts the program.\n" msgstr "" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:108 msgid "" "Test that entering an invalid username and password results in an B " "message." msgstr "" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:113 msgid "" "Note that if NT guest user access is allowed on the PDC, an B message " "may be returned instead of B" msgstr "" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:117 msgid "" "Test that entering a valid username and password results in an B " "message." msgstr "" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:120 msgid "" "Test that entering a guest username and password returns the correct " "response for the site's access policy." msgstr "" #. type: Plain text #: src/auth/basic/SSPI/basic_sspi_auth.8:126 src/auth/digest/file/digest_file_auth.8:65 msgid "Based on prior work by" msgstr "" #. type: Plain text #: src/auth/digest/file/digest_file_auth.8:5 msgid "digest_file_auth - File based digest authentication helper for Squid." msgstr "" #. type: Plain text #: src/auth/digest/file/digest_file_auth.8:7 msgid "Version 1.1" msgstr "" #. type: Plain text #: src/auth/digest/file/digest_file_auth.8:12 tools/squidclient/squidclient.1:28 msgid "file" msgstr "" #. type: Plain text #: src/auth/digest/file/digest_file_auth.8:17 msgid "" "B is an installed binary authentication program for " "Squid. It handles digest authentication protocol and authenticates against a " "text file backend." msgstr "" #. type: Plain text #: src/auth/digest/file/digest_file_auth.8:20 msgid "" "This program will automatically detect the existence of a concurrency " "channel-ID and adjust appropriately. It may be used with any value 0 or " "above for the auth_param children concurrency= parameter." msgstr "" #. type: Plain text #: src/auth/digest/file/digest_file_auth.8:25 msgid "Accept digest hashed passwords rather than plaintext in the password file" msgstr "" #. type: Plain text #: src/auth/digest/file/digest_file_auth.8:29 msgid "Username database file format:" msgstr "" #. type: TP #: src/auth/digest/file/digest_file_auth.8:29 #, no-wrap msgid "- comment lines are possible and should start with a '#';" msgstr "" #. type: TP #: src/auth/digest/file/digest_file_auth.8:32 #, no-wrap msgid "- empty or blank lines are possible;" msgstr "" #. type: TP #: src/auth/digest/file/digest_file_auth.8:35 #, no-wrap msgid "- plaintext entry format is username:password" msgstr "" #. type: TP #: src/auth/digest/file/digest_file_auth.8:38 #, no-wrap msgid "- HA1 entry format is username:realm:HA1" msgstr "" #. type: Plain text #: src/auth/digest/file/digest_file_auth.8:51 msgid "" "To build a directory integrated backend, you need to be able to calculate " "the HA1 returned to squid. To avoid storing a plaintext password you can " "calculate B when the user changes their " "password, and store the tuple B then find the matching " "B when squid asks for the HA1." msgstr "" #. type: Plain text #: src/auth/digest/file/digest_file_auth.8:59 msgid "" "This implementation could be improved by using such a triple for the file " "format. However storing such a triple does little to improve security: If " "compromised the B combination is \"plaintext " "equivalent\" - for the purposes of digest authentication they allow the user " "access. Password synchronization is not tackled by digest - just preventing " "on the wire compromise." msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:5 msgid "negotiate_kerberos_auth - Squid kerberos based authentication helper" msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:7 msgid "Version 3.0.4sq" msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:16 msgid "" "B is an installed binary and allows Squid to " "authenticate users via the Negotiate protocol and Kerberos." msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:30 msgid "Remove realm from username before returning the username to squid." msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:33 msgid "Provide Service Principal Name." msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:36 msgid "Provide Kerberos Keytab Name (Default: /etc/krb5.keytab)" msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:39 msgid "Provide Replay Cache Directory (Default: /var/tmp)" msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:42 msgid "Provide Replay Cache Type (Default: dfl)" msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:49 msgid "" "This helper is intended to be used as an B helper in " "B" msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:67 #, no-wrap msgid "" "Add the following lines to the squid startup script to point squid to a " "keytab file which\n" "contains the HTTP/fqdn service principal for the default Kerberos " "domain. The keytab name can\n" "also be provided by the -k Ekeytab nameE option. The fqdn must be " "the proxy name set in IE\n" " or firefox. You can not use an IP address.\n" msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:70 msgid "KRB5_KTNAME=/etc/squid/HTTP.keytab export KRB5_KTNAME" msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:77 msgid "KRB5_CONFIG=/etc/krb5-squid.conf export KRB5_CONFIG" msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:83 msgid "" "Kerberos can keep a replay cache to detect the reuse of Kerberos tickets " "(usually only possible in a 5 minute window) . If squid is under high load " "with Negotiate(Kerberos) proxy authentication requests the replay cache " "checks can create high CPU load. If the environment does not require high " "security the replay cache check can be disabled for MIT based Kerberos " "implementations by adding the below to the startup script or use the -t none " "option." msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:86 msgid "KRB5RCACHETYPE=none export KRB5RCACHETYPE" msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:89 msgid "" "If negotiate_kerberos_auth doesn't determine for some reason the right " "service principal you can provide it with -s HTTP/fqdn." msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:92 msgid "" "If you serve multiple Kerberos realms add a HTTP/fqdn@REALM service " "principal per realm to the HTTP.keytab file and use the -s GSS_C_NO_NAME " "option with negotiate_kerberos_auth." msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:108 #, no-wrap msgid "" " * Copyright (C) 1996-2014 The Squid Software Foundation and contributors\n" " *\n" " * Squid software is distributed under GPLv2+ license and includes\n" " * contributions from numerous individuals and organizations.\n" " * Please see the COPYING and CONTRIBUTORS files for details.\n" msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:136 msgid "" "B - SPNEGO-based Kerberos and NTLM HTTP Authentication in Microsoft " "Windows," msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:138 msgid "B - The Simple and Protected GSS-API Negotiation Mechanism," msgstr "" #. type: Plain text #: src/auth/negotiate/kerberos/negotiate_kerberos_auth.8:140 msgid "B - The Kerberos Version 5 GSS-API Mechanism," msgstr "" #. type: Plain text #: src/auth/negotiate/SSPI/negotiate_sspi_auth.8:7 msgid "Windows SSPI Negotiate authentication helper." msgstr "" #. type: Plain text #: src/auth/negotiate/SSPI/negotiate_sspi_auth.8:15 msgid "" "B is an installed binary. Uses the Windows SSPI " "interface to perform Negotiate authentication." msgstr "" #. type: Plain text #: src/auth/negotiate/SSPI/negotiate_sspi_auth.8:29 msgid "Display verbose Negotiate packet debugging." msgstr "" #. type: Plain text #: src/auth/negotiate/SSPI/negotiate_sspi_auth.8:34 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:49 msgid "" "Users that are allowed to access the web proxy must have the Windows NT User " "Rights \"logon from the network\"." msgstr "" #. type: Plain text #: src/auth/negotiate/SSPI/negotiate_sspi_auth.8:38 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:64 msgid "B typical minimal required changes:" msgstr "" #. type: Plain text #: src/auth/negotiate/SSPI/negotiate_sspi_auth.8:52 src/auth/ntlm/SSPI/ntlm_sspi_auth.8:76 msgid "Refer to Squid documentation for more details." msgstr "" #. type: Plain text #: src/auth/negotiate/SSPI/negotiate_sspi_auth.8:58 msgid "" "Currently Internet Explorer has some problems with ftp:// URLs when handling " "internal Squid FTP icons. The following B ACL defined before " "authentication ACLs works around this:" msgstr "" #. type: Plain text #: src/auth/negotiate/SSPI/negotiate_sspi_auth.8:71 msgid "Based on prior work of" msgstr "" #. type: Plain text #: src/auth/ntlm/SSPI/ntlm_sspi_auth.8:5 msgid "ntlm_sspi_auth.exe - Native Windows NTLM/NTLMv2 authenticator for Squid" msgstr "" #. type: Plain text #: src/auth/ntlm/SSPI/ntlm_sspi_auth.8:21 msgid "" "B is an installed binary built on Windows systems. It " "provides native access to the Security Service Provider Interface of Windows " "for authenticating with NTLM / NTLMv2. It has automatic support for NTLM " "NEGOTIATE packets." msgstr "" #. type: Plain text #: src/auth/ntlm/SSPI/ntlm_sspi_auth.8:26 msgid "Specify a Windows Local Group name allowed to authenticate." msgstr "" #. type: Plain text #: src/auth/ntlm/SSPI/ntlm_sspi_auth.8:34 msgid "Specify a Windows Local Group name which is to be denied authentication." msgstr "" #. type: Plain text #: src/auth/ntlm/SSPI/ntlm_sspi_auth.8:42 msgid "Enables verbose NTLM packet debugging." msgstr "" #. type: Plain text #: src/auth/ntlm/SSPI/ntlm_sspi_auth.8:46 msgid "B" msgstr "" #. type: Plain text #: src/auth/ntlm/SSPI/ntlm_sspi_auth.8:53 msgid "" "Optionally the authenticator can verify the NT LOCAL group membership of the " "user against the User Group specified in the Authenticator's command line." msgstr "" #. type: Plain text #: src/auth/ntlm/SSPI/ntlm_sspi_auth.8:57 msgid "" "This can be accomplished creating a local user group on the NT machine, " "grant the privilege, and adding users to it, it works only with MACHINE " "Local Groups, not Domain Local Groups." msgstr "" #. type: Plain text #: src/auth/ntlm/SSPI/ntlm_sspi_auth.8:61 msgid "" "Better group checking is available with external ACL, see " "B documentation." msgstr "" #. type: Plain text #: src/auth/ntlm/SSPI/ntlm_sspi_auth.8:84 msgid "" "Internet Explorer has some problems with B URLs when handling " "internal Squid FTP icons. The following B ACL works around this " "when placed before the authentication ACL:" msgstr "" #. type: Plain text #: src/auth/ntlm/SSPI/ntlm_sspi_auth.8:95 msgid "Based on prior work in by" msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:5 msgid "security_file_certgen - SSL certificate generator for Squid." msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:15 src/security/cert_generators/file/security_file_certgen.8.in:22 src/security/cert_generators/file/security_file_certgen.8.in:29 msgid "directory" msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:17 msgid "size" msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:24 msgid "serial number" msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:33 msgid "B is an installed binary." msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:36 msgid "" "Because the generation and signing of SSL certificates takes time Squid must " "use external process to handle the work." msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:40 msgid "" "This process generates new SSL certificates and uses a disk cache of " "certificates to improve response times on repeated requests. Communication " "occurs via TCP sockets bound to the loopback interface." msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:46 msgid "" "File system block size in bytes. Needed for processing natural size of " "certificate on disk. Default value is 2048 bytes." msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:53 msgid "" "Initialize the SSL storage database and exit. Requires the B<-s> option to " "determine the storage location being created." msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:64 msgid "" "Display the current serial number using stderr and exit. Requires B<-s> " "option to determine which storage directory the serial is located in." msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:72 msgid "Directory path of disk storage for new SSL certificates." msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:76 msgid "Maximum size of SSL certificate disk storage." msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:83 msgid "" "HEX B to use when initializing an SSL storage database. The " "default value of serial number is the number of seconds since Epoch minus " "1200000000." msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:87 msgid "Display the binary version details using stderr." msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:91 msgid "B" msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:95 src/security/cert_generators/file/security_file_certgen.8.in:123 msgid "" "Certificates are stored in this database in signed form. After any change " "to the signing CA in squid.conf be sure to erase and re-initialize the " "certificate database." msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:98 msgid "B" msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:103 msgid "" "The version 1.0 of this helper will not add chained intermediate CA " "certificates. The client must have a full chain of trust from the root CA " "all the way down to the end certificate generated by this program." msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:106 msgid "" "Signing with an intermediate CA needs to install both the root and the " "intermediate public CA on the clients." msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:113 msgid "" "Before this helper can be used the storage area for new certificates must be " "initialized manually. This is done from the command line using the B<-c> " "parameters." msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:116 msgid "For example:" msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:128 msgid "" "For simple configuration the helper defaults can be used. Only HTTP " "listening port options are required to enable generation and set the signing " "CA certificate. For Example:" msgstr "" #. type: Plain text #: src/security/cert_generators/file/security_file_certgen.8.in:137 msgid "" "For more customized configuration the helper certificate storage directory " "location and size can be altered with the B configuration " "directive. For example:" msgstr "" #. type: Plain text #: src/squid.8.in:5 msgid "squid - HTTP web proxy caching server" msgstr "" #. type: Plain text #: src/squid.8.in:11 msgid "facility" msgstr "" #. type: Plain text #: src/squid.8.in:13 msgid "config-file" msgstr "" #. type: Plain text #: src/squid.8.in:17 msgid "signal" msgstr "" #. type: Plain text #: src/squid.8.in:19 msgid "service-name" msgstr "" #. type: Plain text #: src/squid.8.in:21 msgid "command-line" msgstr "" #. type: Plain text #: src/squid.8.in:30 msgid "" "B is a high-performance proxy caching server for web clients, " "supporting FTP, gopher, ICAP, ICP, HTCP and HTTP data objects. Unlike " "traditional caching software, Squid handles all requests in a single, " "non-blocking process." msgstr "" #. type: Plain text #: src/squid.8.in:34 msgid "" "Squid keeps meta data and especially hot objects cached in RAM, caches DNS " "lookups, supports non-blocking DNS lookups, and implements negative caching " "of failed requests." msgstr "" #. type: Plain text #: src/squid.8.in:39 msgid "" "Squid supports SSL, extensive access controls, and full request logging. By " "using the lightweight Internet Cache Protocols ICP, HTCP or CARP, Squid " "caches can be arranged in a hierarchy or mesh for additional bandwidth " "savings." msgstr "" #. type: Plain text #: src/squid.8.in:47 msgid "" "Squid consists of a main server program B , some optional programs " "for custom processing and authentication, and some management and client " "tools. When squid starts up, it spawns a configurable number of helper " "processes, each of which can perform parallel lookups. This reduces the " "amount of time the cache waits for results." msgstr "" #. type: Plain text #: src/squid.8.in:49 msgid "Squid is derived from the ARPA-funded Harvest Project." msgstr "" #. type: Plain text #: src/squid.8.in:55 msgid "" "This manual page only lists the command line arguments. For details on how " "to configure Squid see the file B<@SYSCONFDIR@/squid.conf.documented,> the " "Squid wiki FAQ and examples at https://wiki.squid-cache.org/ , or the " "configuration manual on the Squid home page" msgstr "" #. type: Plain text #: src/squid.8.in:64 msgid "" "Specify HTTP port number where Squid should listen for requests, in addition " "to any B specifications in B" msgstr "" #. type: Plain text #: src/squid.8.in:68 msgid "Do not catch fatal signals." msgstr "" #. type: Plain text #: src/squid.8.in:72 msgid "Write debugging to stderr also." msgstr "" #. type: Plain text #: src/squid.8.in:84 msgid "" "Use the given config-file instead of B<@SYSCONFDIR@/squid.conf .> If the " "file name starts with a B or B<|> then it is assumed to be an external " "command or command line. Can for example be used to pre-process the " "configuration before it is being read by Squid. To facilitate this Squid " "also understands the common #line notion to indicate the real source file." msgstr "" #. type: Plain text #: src/squid.8.in:88 msgid "Don't serve any requests until store is rebuilt." msgstr "" #. type: Plain text #: src/squid.8.in:92 msgid "Print help message." msgstr "" #. type: Plain text #: src/squid.8.in:98 msgid "Install as a Windows Service (see B<-n> option)." msgstr "" #. type: Plain text #: src/squid.8.in:105 msgid "" "Parse configuration file, then send signal to running copy (except B<-k " "parse> ) and exit." msgstr "" #. type: Plain text #: src/squid.8.in:110 msgid "Use specified syslog facility. Implies B<-s>" msgstr "" #. type: Plain text #: src/squid.8.in:115 msgid "" "Specify Windows Service name to use for service operations, default is: " "B" msgstr "" #. type: Plain text #: src/squid.8.in:119 msgid "No daemon mode." msgstr "" #. type: Plain text #: src/squid.8.in:125 msgid "" "Parent process does not exit until its children have finished. It has no " "effect with B<-N> which does not fork/exit at startup." msgstr "" #. type: Plain text #: src/squid.8.in:129 msgid "Set Windows Service Command line options in Registry." msgstr "" #. type: Plain text #: src/squid.8.in:135 msgid "Remove a Windows Service (see B<-n> option)." msgstr "" #. type: Plain text #: src/squid.8.in:141 msgid "Do not set B on port." msgstr "" #. type: Plain text #: src/squid.8.in:146 msgid "Enable logging to syslog. Also configurable in B<@SYSCONFDIR@/squid.conf>" msgstr "" #. type: Plain text #: src/squid.8.in:150 msgid "Double-check swap during rebuild." msgstr "" #. type: Plain text #: src/squid.8.in:154 msgid "Specify ICP port number (default: 3130), disable with 0." msgstr "" #. type: Plain text #: src/squid.8.in:158 msgid "Print version and build details." msgstr "" #. type: Plain text #: src/squid.8.in:162 msgid "Force full debugging." msgstr "" #. type: Plain text #: src/squid.8.in:170 msgid "Only return B or B during fast reload." msgstr "" #. type: Plain text #: src/squid.8.in:178 msgid "" "Create missing swap directories and other missing cache_dir structures, then " "exit. All cache_dir types create the configured top-level directory if it is " "missing. Other actions are type-specific. For example, ufs-based storage " "systems create missing L1 and L2 directories while Rock creates the missing " "database file." msgstr "" #. type: Plain text #: src/squid.8.in:183 msgid "" "This option does not enable validation of any present swap structures. Its " "focus is on creation of missing pieces. If nothing is missing, squid -z just " "exits. If you suspect cache_dir corruption, you must delete the top-level " "cache_dir directory before running squid -z." msgstr "" #. type: Plain text #: src/squid.8.in:188 msgid "" "By default, squid -z runs in daemon mode (so that configuration macros and " "other SMP features work as expected). Use B<-N> option to overwrite this." msgstr "" #. type: SH #: src/squid.8.in:189 #, no-wrap msgid "FILES" msgstr "" #. type: Plain text #: src/squid.8.in:191 msgid "Squid configuration files located in @SYSCONFDIR@/:" msgstr "" #. type: Plain text #: src/squid.8.in:197 msgid "" "The main configuration file. You must initially make changes to this file " "for B to work. For example, the default configuration only allows " "access from RFC private LAN networks. Some packaging distributions block " "even that." msgstr "" #. type: Plain text #: src/squid.8.in:201 src/squid.8.in:207 msgid "" "Reference copy of the configuration file. Always kept up to date with the " "version of Squid you are using." msgstr "" #. type: Plain text #: src/squid.8.in:203 msgid "" "Use this to look up the default configuration settings and syntax after " "upgrading." msgstr "" #. type: Plain text #: src/squid.8.in:212 msgid "" "Use this to read the documentation for configuration options available in " "your build of Squid. The online configuration manual is also available for a " "full reference of options. Bhttp://www.squid-cache.org/Doc/config/" msgstr "" #. type: Plain text #: src/squid.8.in:217 msgid "The main configuration file for the web B tools." msgstr "" #. type: Plain text #: src/squid.8.in:220 msgid "The main configuration file for the Sample MSNT authenticator." msgstr "" #. type: Plain text #: src/squid.8.in:225 msgid "" "CSS Stylesheet to control the display of generated error pages. Use this to " "set any company branding you need, it will apply to every language Squid " "provides error pages for." msgstr "" #. type: Plain text #: src/squid.8.in:228 msgid "Some files also located elsewhere:" msgstr "" #. type: Plain text #: src/squid.8.in:231 msgid "MIME type mappings for FTP gatewaying" msgstr "" #. type: Plain text #: src/squid.8.in:234 msgid "Location of Squid error pages and templates." msgstr "" #. type: Plain text #: src/squid.8.in:237 msgid "" "Squid was written over many years by a changing team of developers and " "maintained in turn by" msgstr "" #. type: Plain text #: src/squid.8.in:244 msgid "" "With contributions from many others in the Squid community. see " "CONTRIBUTORS for a full list of individuals who contributed code. see " "CREDITS for a list of major code contributing copyright holders." msgstr "" #. type: Plain text #: tools/cachemgr.cgi.8.in:5 msgid "cachemgr.cgi - Squid HTTP proxy manager CGI web interface" msgstr "" #. type: Plain text #: tools/cachemgr.cgi.8.in:16 msgid "" "The cache manager ( B ) is a CGI utility for displaying " "statistics about the Squid HTTP proxy process as it runs. The cache manager " "is a convenient way to manage the cache and view statistics without logging " "into the server." msgstr "" #. type: Plain text #: tools/cachemgr.cgi.8.in:20 msgid "" "Configuration examples for many common web servers can be found in the Squid " "FAQ wiki." msgstr "" #. type: Plain text #: tools/cachemgr.cgi.8.in:32 msgid "" "The access configuration file defining which Squid servers may be managed " "via this B program. Each line specifies a B:B " "followed by an optional description" msgstr "" #. type: Plain text #: tools/cachemgr.cgi.8.in:36 msgid "" "The server name may contain shell wildcard characters such as *, [] etc. A " "quick selection dropdown menu is automatically constructed from the simple " "server names." msgstr "" #. type: Plain text #: tools/cachemgr.cgi.8.in:40 msgid "" "Specifying :port is optional. If not specified then the default proxy port " "is assumed. :* or :any matches any port on the target server." msgstr "" #. type: SH #: tools/cachemgr.cgi.8.in:41 #, no-wrap msgid "SECURITY" msgstr "" #. type: Plain text #: tools/cachemgr.cgi.8.in:48 msgid "" "B calls the requested server on the requested port using HTTP " "and returns a formatted version of the response. To avoid abuse it is " "recommended to configure your web server to restrict access to the " "B program." msgstr "" #. type: Plain text #: tools/cachemgr.cgi.8.in:54 msgid "" "Derived from Harvest. Further developed by numerous individuals from the " "internet community. Development is led by Duane Wessels of the National " "Laboratory for Applied Network Research and funded by the National Science " "Foundation." msgstr "" #. type: Plain text #: tools/cachemgr.cgi.8.in:70 tools/purge/purge.1:276 tools/squidclient/squidclient.1:252 msgid "" "See https://wiki.squid-cache.org/SquidFaq/BugReporting for details of what " "you need to include with your bug report." msgstr "" #. type: Plain text #: tools/purge/purge.1:5 msgid "purge - magnifying glass into your squid cache" msgstr "" #. type: Plain text #: tools/purge/purge.1:21 msgid "" "B is used to have a look at what URLs are stored in which file within " "your cache. The B tool can also be used to release objects which URLs " "match user specified regular expressions. A more troublesome feature is the " "ability to remove files B does not seem to know about any longer." msgstr "" #. type: Plain text #: tools/purge/purge.1:23 msgid "This is a tool for expert usage only, use it under your own responsibility." msgstr "" #. type: Plain text #: tools/purge/purge.1:34 msgid "" "a kind of \"i am alive\" flag. It can only be activated, if your stdout is a " "tty. If active, it will display a little rotating line to indicate that " "there is actually something happening. You should not use this switch if you " "capture your stdout in a file or if your expression list produces many " "matches. The -a flag is also incompatible with the (default) multi cache_dir " "mode." msgstr "" #. type: Plain text #: tools/purge/purge.1:36 msgid "default: off\t\tSee also: -n" msgstr "" #. type: Plain text #: tools/purge/purge.1:43 msgid "" "this option lets you specify the location of the squid.conf file. Purge " "understands about more than one cache_dir, and does so by parsing " "squid.conf. It knows about both ways of Squid-2 cache_dir specifications, " "and will automatically try to use the correct one." msgstr "" #. type: Plain text #: tools/purge/purge.1:45 msgid "default: /usr/local/squid/etc/squid.conf" msgstr "" #. type: Plain text #: tools/purge/purge.1:53 msgid "" "if you want to rescue files from your cache, you need to specify the " "directory into which the files will be copied. Please note that purge will " "try to establish the original server directory structure. This switch also " "activates copy-out mode. Please do not use copy-out mode with any purge mode " "(-P) other than 0." msgstr "" #. type: Plain text #: tools/purge/purge.1:56 msgid "" "For instance, if you specified \"-C /tmp\", purge will try to recreate " "/tmp/www.server.1/url/path/file, and so forth." msgstr "" #. type: Plain text #: tools/purge/purge.1:58 msgid "default: off\t\tSee also: -H, -P" msgstr "" #. type: Plain text #: tools/purge/purge.1:63 msgid "" "lets you specify a debug level. Different bits are reserved for different " "output." msgstr "" #. type: Plain text #: tools/purge/purge.1:65 msgid "default: 0" msgstr "" #. type: Plain text #: tools/purge/purge.1:74 msgid "" "Specify one regular expression to be searched for in the cache. This is " "useful if there is only a handful of objects you want to check. Please " "remember to escape the shell meta characters used in your regular " "expression. The use of single quotes around your expression is " "recommended. The capital letter version works case sensitive, the lower caps " "version does not." msgstr "" #. type: Plain text #: tools/purge/purge.1:76 tools/purge/purge.1:86 msgid "default: (no default)" msgstr "" #. type: Plain text #: tools/purge/purge.1:84 msgid "" "if you have more than a handful of expressions, or want to check the same " "set at regular intervals, the file option might be more useful to you. Each " "line in the text file will be regarded as one regular expression. Again, " "the capital letter version works case sensitive, the lower caps version does " "not." msgstr "" #. type: Plain text #: tools/purge/purge.1:91 msgid "" "if in copy-out mode (see: -C), you can specify to keep the HTTP Header in " "the recreated file." msgstr "" #. type: Plain text #: tools/purge/purge.1:93 msgid "default: off\t\tSee also: -C" msgstr "" #. type: Plain text #: tools/purge/purge.1:104 msgid "" "tell purge to process one cache_dir after another, instead of doing things " "in parallel. If you have more than one cache_dir in your configuration " "purge will fork off a worker process for each cache_dir to do the checks for " "optimum speed, assuming a decently designed cache. Since parallel execution " "will put quite some load on the system and its controllers, it is sometimes " "preferred to use less resources,\tthough it will take longer." msgstr "" #. type: Plain text #: tools/purge/purge.1:106 msgid "default: parallel mode for more than one cache_dir" msgstr "" #. type: Plain text #: tools/purge/purge.1:116 msgid "" "Some cache admins use a different port than 3128. The purge tool will need " "to connect to your cache in order to send the PURGE request (see -P). This " "option lets you specify the host and port to connect to. The port is " "optional. The port can be a name (check your /etc/services) or number. It is " "separated from the host name portion by a single colon, no spaces allowed." msgstr "" #. type: Plain text #: tools/purge/purge.1:118 msgid "default: localhost:3128" msgstr "" #. type: Plain text #: tools/purge/purge.1:125 msgid "" "If you want to do more than just print your cache content, you will need to " "specify this option. Each bit is reserved for a different action. Only the " "use of the LSB is recommended, the rest should be considered experimental." msgstr "" #. type: Plain text #: tools/purge/purge.1:128 msgid "B" msgstr "" #. type: Plain text #: tools/purge/purge.1:130 msgid "B" msgstr "" #. type: Plain text #: tools/purge/purge.1:132 msgid "B" msgstr "" #. type: Plain text #: tools/purge/purge.1:134 msgid "B" msgstr "" #. type: Plain text #: tools/purge/purge.1:145 msgid "" "If you use a value other than 0 or 1, you will need to slow rebuild your " "cache content. A warning message will remind you of that. If you use bit#1, " "all unsuccessful PURGEs will result in the object file in your cache " "directory to be removed, because squid does not seem to know about it any " "longer. Beware that the asyncio might try to remove it after the purge tool, " "and thus complains bitterly. Bit#1 only makes sense, if Bit#0 is also set, " "otherwise it has no effect (since the HTTP status 404 is never returned)." msgstr "" #. type: Plain text #: tools/purge/purge.1:152 msgid "" "Bit#2 is reserved for strange files which do not even contain a URL. Beware " "that these files may indicate a new object squid currently intends to swap " "onto disk. If the file suddenly went away, or is removed when squid tries to " "fetch the object, it will complain bitterly. You must slow rebuild your " "cache, if you use this option." msgstr "" #. type: Plain text #: tools/purge/purge.1:157 msgid "" "It is recommended that if you dare to use bit#1 or bit#2, you should only " "grant the purge tool access to your squid, e.g. move the HTTP and ICP " "listening port of squid to a different non-standard location during the " "purge." msgstr "" #. type: Plain text #: tools/purge/purge.1:159 msgid "default: 0 (just print)" msgstr "" #. type: Plain text #: tools/purge/purge.1:164 msgid "" "If you specify this switch, all commandline parameters will be shown after " "they were parsed." msgstr "" #. type: Plain text #: tools/purge/purge.1:166 msgid "default: off" msgstr "" #. type: Plain text #: tools/purge/purge.1:171 msgid "" "be verbose in the things reported about the file. See the output section " "below." msgstr "" #. type: Plain text #: tools/purge/purge.1:180 msgid "" "In order to use B to affect a running proxy with PURGE method, you " "will have to enable this feature in squid.conf. By default, PURGE is " "disabled. You should watch closely for whom you enable the PURGE ability, " "otherwise a total stranger just might wipe your cache content. Lines similar " "to the following will need to be added to your squid.conf:" msgstr "" #. type: Plain text #: tools/purge/purge.1:192 msgid "" "Reconfigure or restart (preferred) your squid after changing the " "configuration file." msgstr "" #. type: SH #: tools/purge/purge.1:193 #, no-wrap msgid "OUTPUT" msgstr "" #. type: Plain text #: tools/purge/purge.1:198 msgid "" "In regular mode, the output of purge consists of four columns. If the URL " "contains not encoded whitespaces, it may look as if there are more columns, " "but the last one is the URI." msgstr "" #. type: Plain text #: tools/purge/purge.1:205 #, no-wrap msgid "" " # name meaning\n" " = ====== ===========================================================\n" " 1 file name of cache file eximed which matches the regular expression.\n" " 2 status return result of purge request, \" 0\" in print mode.\n" " 3 size object size including stored headers, not file size.\n" " 4 uri perceived uri\n" msgstr "" #. type: Plain text #: tools/purge/purge.1:207 msgid "Example for non-verbose output in print-mode:" msgstr "" #. type: Plain text #: tools/purge/purge.1:209 msgid "" "/cache3/00/00/0000004A 0 5682 " "http://graphics.userfriendly.org/images/slovenia.gif" msgstr "" #. type: Plain text #: tools/purge/purge.1:214 msgid "" "In verbose mode, additional columns are inserted before the uri. Time stamps " "are reported using hexadecimal notation, and Squid's standard for reporting " "\"no such timestamp\" == -1, and \"unparsable timestamp\" == -2." msgstr "" #. type: Plain text #: tools/purge/purge.1:228 #, no-wrap msgid "" " # name meaning\n" " = ====== ===========================================================\n" " 1 file name of cache file eximed which matches the re.\n" " 2 status return result of purge request, \" 0\" in print mode \"-P 0\".\n" " 3 size object size including stored headers, not file size.\n" " 4 md5 MD5 of URI from file, or \"(no_md5_data_available)\" string.\n" " 5 ts UTC of Value of Date: header in hex notation\n" " 6 lr UTC of last time the object was referenced\n" " 7 ex UTC of Expires: header\n" " 8 lr UTC of Last-Modified: header\n" " 9 flags Value of objects flags field in hex, see: Programmers Guide\n" "10 refcnt number of times the object was referenced.\n" "11 uri STORE_META_URL uri or \"strange_file\"\n" msgstr "" #. type: Plain text #: tools/purge/purge.1:230 msgid "Example for verbose output in print-mode:" msgstr "" #. type: Plain text #: tools/purge/purge.1:232 msgid "" "/cache1/00/00/000000B7 0 406 7CFCB1D319F158ADC9CFD991BB8F6DCE 397d449b " "39bf677b ffffffff 3820abfc 0460 1 " "http://www.netscape.com/images/nc_vera_tile.gif" msgstr "" #. type: Plain text #: tools/purge/purge.1:235 msgid "Purge does not slow rebuild the cache for you." msgstr "" #. type: Plain text #: tools/purge/purge.1:238 msgid "" "It is still relatively slow, especially if your machine is low on memory " "and/or unable to hold all OS directory cache entries in main memory." msgstr "" #. type: Plain text #: tools/purge/purge.1:240 msgid "Should never be used on \"busy\" caches with purge modes higher than 1." msgstr "" #. type: SH #: tools/purge/purge.1:241 #, no-wrap msgid "TODO" msgstr "" #. type: Plain text #: tools/purge/purge.1:248 msgid "" "1) use the stat() result on weird files to have a look at their ctime and " "mtime. If they are younger than, lets say 30 seconds, they were just created " "by B and should not be removed." msgstr "" #. type: Plain text #: tools/purge/purge.1:251 msgid "" "2) Add a query before purging objects or removing files, and add another " "option to remove nagging for the experienced user." msgstr "" #. type: Plain text #: tools/purge/purge.1:253 msgid "3) The reported object size may be off by one." msgstr "" #. type: Plain text #: tools/purge/purge.1:256 tools/squidclient/squidclient.1:232 msgid "This program and manual was written by" msgstr "" #. type: Plain text #: tools/purge/purge.1:260 msgid "Based on original squidpurge README." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:5 msgid "squidclient - A simple HTTP web client tool" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:12 tools/squidclient/squidclient.1:16 msgid "string" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:14 msgid "remote host" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:18 msgid "IMS" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:20 msgid "Host header" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:24 msgid "method" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:30 tools/squidclient/squidclient.1:48 msgid "count" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:34 tools/squidclient/squidclient.1:36 msgid "user" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:38 msgid "version" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:40 tools/squidclient/squidclient.1:42 msgid "password" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:44 msgid "url" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:50 msgid "interval" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:55 msgid "CA certificates file" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:57 msgid "client X.509 certificate file" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:59 msgid "TLS session parameters" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:69 msgid "" "B is a tool providing a command line interface for retrieving " "URLs. Designed for testing any HTTP 0.9, 1.0, or 1.1 web server or proxy. " "This tool can be combined with scripts to perform any basic HTTP operation. " "Some additional features for access to the B proxy object cache and " "management information are provided." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:74 msgid "Do NOT include Accept: header." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:80 msgid "" "Send B as User-Agent: header. To omit the header completely set " "string to empty ('')." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:85 msgid "Retrieve URL from server host. Default is B" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:91 msgid "Extra headers to send. Use B<'\\en'> for new lines." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:95 msgid "If-Modified-Since time (in Epoch seconds)." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:99 msgid "Host header content" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:103 msgid "Keep the connection active. Default is to do only one request then close." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:107 msgid "Specify a local IP address to bind to. Default is none." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:122 msgid "" "Request method, default is I Squid also supports a non-standard method " "called I You can use that to purge a specific URL from the cache. " "You need to have I access setup in B similar to " "I access. Here is an example:" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:130 msgid "Proxy Negotiate(Kerberos) authentication." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:132 tools/squidclient/squidclient.1:138 msgid "Use kinit username@DOMAIN first to get initial TGS." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:136 msgid "WWW Negotiate(Kerberos) authentication." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:143 msgid "Port number of cache. Default is 3128." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:147 msgid "Request body. Using the named file as data." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:151 msgid "Force cache to reload URL." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:155 msgid "Silent. Do not print data to stdout." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:161 msgid "Trace I HTTP relay or proxy hops" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:165 msgid "Timeout value (seconds) for read/write operations." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:169 msgid "Proxy authentication username" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:173 msgid "WWW authentication username" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:177 msgid "Verbose. Print outgoing message to stderr." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:181 msgid "HTTP Version. Use '-' for HTTP/0.9 omitted case" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:185 msgid "Proxy authentication password" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:189 msgid "WWW authentication password" msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:193 msgid "Use Transport Layer Security on the HTTP connection." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:197 msgid "Use TLS with unauthenticated (anonymous) certificate." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:202 msgid "" "File containing client X.509 certificate in PEM format. May be repeated to " "load several client certificates." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:207 msgid "" "File containing trusted Certificate Authority (CA) certificates in PEM " "format. May be repeated to load any number of files." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:212 msgid "" "TLS library specific parameters for the communication session. See the " "library documentation for details on valid parameters." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:214 msgid "If repeated only the last value will have effect." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:219 msgid "" "Enable ping mode. Optional -g and -I parameters must follow immediately if " "used. Repeated use resets to default ping settings." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:225 msgid "" "Ping mode, perform.I count iterations (default is to loop until " "interrupted)." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:229 msgid "Ping interval in seconds (default 1 second)." msgstr "" #. type: Plain text #: tools/squidclient/squidclient.1:236 msgid "" "Based on original code derived from Harvest and further developed by " "numerous individuals from the internet community." msgstr ""