@@ -143,23 +143,32 @@ msgid ""
143143"returns a new context with secure default settings."
144144msgstr ""
145145":class:`SSLSocket` 實例必須使用 :meth:`SSLContext.wrap_socket` 方法來建立。輔"
146- "助函式 :func:`create_default_context`會回傳有安全預設設定的新內容 。"
146+ "助函式 :func:`create_default_context`會回傳有安全預設設定的新語境 (context) 。"
147147
148148#: ../../library/ssl.rst:82
149149msgid "Client socket example with default context and IPv4/IPv6 dual stack::"
150150msgstr ""
151+ "使用預設語境及 IPv4/IPv6 雙協定堆疊的客戶端 socket 範例:\n"
152+ "\n"
153+ "::"
151154
152155#: ../../library/ssl.rst:95
153156msgid "Client socket example with custom context and IPv4::"
154157msgstr ""
158+ "使用自訂語境及 IPv4 的客戶端 socket範例:\n"
159+ "\n"
160+ "::"
155161
156162#: ../../library/ssl.rst:107
157163msgid "Server socket example listening on localhost IPv4::"
158164msgstr ""
165+ "在本地 IPv4 上監聽伺服器 socket 的範例:\n"
166+ "\n"
167+ "::"
159168
160169#: ../../library/ssl.rst:121
161170msgid "Context creation"
162- msgstr ""
171+ msgstr "語境建立 "
163172
164173#: ../../library/ssl.rst:123
165174msgid ""
@@ -174,6 +183,8 @@ msgid ""
174183"represent a higher security level than when calling the :class:`SSLContext` "
175184"constructor directly."
176185msgstr ""
186+ "回傳一個新的 :class:`SSLContext` 物件,使用給定 *purpose* 的預設值。這些設定"
187+ "是由 :mod:`ssl` 選擇,通常比直接使用 :class:`SSLContext` 有更高的安全性。"
177188
178189#: ../../library/ssl.rst:133
179190msgid ""
@@ -182,6 +193,9 @@ msgid ""
182193"If all three are :const:`None`, this function can choose to trust the "
183194"system's default CA certificates instead."
184195msgstr ""
196+ "*cafile*, *capath*, *cadata* 是用來選擇用於憑證認證的 CA 憑證,就像 :meth:"
197+ "`SSLContext.load_verify_locations` 一樣。如果三個值都是 :const:`None`,此函式"
198+ "會自動選擇系統預設的 CA 憑證。"
185199
186200#: ../../library/ssl.rst:139
187201msgid ""
@@ -194,26 +208,39 @@ msgid ""
194208"or uses :meth:`SSLContext.load_default_certs` to load default CA "
195209"certificates."
196210msgstr ""
211+ "這些設定包含::data:`PROTOCOL_TLS_CLIENT` 或 :data:`PROTOCOL_TLS_SERVER`、:"
212+ "data:`OP_NO_SSLv2`、以及 :data:`OP_NO_SSLv3`,使用高加密密碼套件但不包含 "
213+ "RC4 和未經身份驗證的密碼套件。如果將 *purpose* 設定為 :const:`~Purpose."
214+ "SERVER_AUTH`,則會把 :data:`~SSLContext.verify_mode` 設為 :data:"
215+ "`CERT_REQUIRED` 並使用設定的 CA 憑證(當 *cafile*、*capath* 或 *cadata* 其中"
216+ "一個值有被設定時) 或使用預設的 CA 憑證 :meth:`SSLContext."
217+ "load_default_certs` 。"
197218
198219#: ../../library/ssl.rst:148
199220msgid ""
200221"When :attr:`~SSLContext.keylog_filename` is supported and the environment "
201222"variable :envvar:`SSLKEYLOGFILE` is set, :func:`create_default_context` "
202223"enables key logging."
203224msgstr ""
225+ "當系統有支援 :attr:`~SSLContext.keylog_filename` 並且有設定環境變數 :envvar:"
226+ "`SSLKEYLOGFILE` 時 :func:`create_default_context` 會啟用密鑰日誌記錄 (logging)。"
204227
205228#: ../../library/ssl.rst:153
206229msgid ""
207230"The protocol, options, cipher and other settings may change to more "
208231"restrictive values anytime without prior deprecation. The values represent "
209232"a fair balance between compatibility and security."
210233msgstr ""
234+ "協定、選項、密碼和其它設定可以在不捨棄舊值的情況下直接更改成新的值,這些值代"
235+ "表了在相容性和安全性之間取得的合理平衡。"
211236
212237#: ../../library/ssl.rst:157
213238msgid ""
214239"If your application needs specific settings, you should create a :class:"
215240"`SSLContext` and apply the settings yourself."
216241msgstr ""
242+ "如果你的應用程式需要特殊的設定,你應該要自行建立一個 :class:`SSLContext` 並自"
243+ "行調整設定。"
217244
218245#: ../../library/ssl.rst:161
219246msgid ""
@@ -225,28 +252,37 @@ msgid ""
225252"org/wiki/POODLE>`_. If you still wish to continue to use this function but "
226253"still allow SSL 3.0 connections you can re-enable them using::"
227254msgstr ""
255+ "如果您發現某些舊的客戶端或伺服器常適用此函式建立的 :class:`SSLContext` 連線"
256+ "時,收到\" Protocol or cipher suite mismatch\" 錯誤,這可能是因為他們的系統僅"
257+ "支援 SSL3.0,然而 SSL3.0 已被此函式用 :data:`OP_NO_SSLv3` 排除。目前廣泛認為 "
258+ "SSL3.0 已經\\ `被完全破解 <https://en.wikipedia.org/wiki/POODLE>`_。如果您仍"
259+ "然希望在允許 SSL3.0 連線的情況下使用此函式,可以使用下面的方法:\n"
260+ "\n"
261+ "::"
228262
229263#: ../../library/ssl.rst:177
230264msgid "RC4 was dropped from the default cipher string."
231- msgstr ""
265+ msgstr "把 RC4 從預設密碼中捨棄。 "
232266
233267#: ../../library/ssl.rst:181
234268msgid "ChaCha20/Poly1305 was added to the default cipher string."
235- msgstr ""
269+ msgstr "把 ChaCha20/Poly1305 加入預設密碼。 "
236270
237271#: ../../library/ssl.rst:183
238272msgid "3DES was dropped from the default cipher string."
239- msgstr ""
273+ msgstr "把 3DES 從預設密碼中捨棄。 "
240274
241275#: ../../library/ssl.rst:187
242276msgid "Support for key logging to :envvar:`SSLKEYLOGFILE` was added."
243- msgstr ""
277+ msgstr "增加了 :envvar:`SSLKEYLOGFILE` 對密鑰記錄 (logging)的支持。 "
244278
245279#: ../../library/ssl.rst:191
246280msgid ""
247281"The context now uses :data:`PROTOCOL_TLS_CLIENT` or :data:"
248282"`PROTOCOL_TLS_SERVER` protocol instead of generic :data:`PROTOCOL_TLS`."
249283msgstr ""
284+ "當前語境使用 :data:`PROTOCOL_TLS_CLIENT` 協定或 :data:`PROTOCOL_TLS_SERVER` "
285+ "協定而非通用的 :data:`PROTOCOL_TLS`。"
250286
251287#: ../../library/ssl.rst:197
252288msgid "Exceptions"