@@ -7,7 +7,7 @@ msgstr ""
77"Project-Id-Version :Python 3.12\n "
88"Report-Msgid-Bugs-To :\n "
99"POT-Creation-Date :2023-12-21 18:18+0000\n "
10- "PO-Revision-Date :2024-01-04 14:19 +0800\n "
10+ "PO-Revision-Date :2024-01-09 10:47 +0800\n "
1111"Last-Translator :Adrian Liaw <adrianliaw2000@gmail.com>\n "
1212"Language-Team :Chinese - TAIWAN (https://github.com/python/python-docs-zh- "
1313"tw)\n "
@@ -581,6 +581,8 @@ msgid ""
581581"one of ``CA``, ``ROOT`` or ``MY``. Windows may provide additional cert "
582582"stores, too."
583583msgstr ""
584+ "從 Windows 的系統憑證儲存庫中搜尋憑證。*store_name* 可以是 ``CA``、``ROOT`` "
585+ "或 ``MY`` 的其中一個。Windows 也可能會提供額外的憑證儲存庫。"
584586
585587#: ../../library/ssl.rst:419
586588msgid ""
@@ -590,6 +592,10 @@ msgid ""
590592"data. Trust specifies the purpose of the certificate as a set of OIDS or "
591593"exactly ``True`` if the certificate is trustworthy for all purposes."
592594msgstr ""
595+ "此函式會回傳一個元組 (cert_bytes, encoding_type, trust) 串列。encoding_type "
596+ "指定了 cert_bytes 的編碼格式。它可以是用來表示 X.509 ASN.1 資料的 :const:"
597+ "`x509_asn` 或是用來表示 PKCS#7 ASN.1 資料的 :const:`pkcs_7_asn`。Trust 通過一"
598+ "組 OIDS 來指定憑證的用途,或是如果憑證對所有用途都可以使用則回傳 ``True``。"
593599
594600#: ../../library/ssl.rst:426 ../../library/ssl.rst:1542
595601#: ../../library/ssl.rst:1837
@@ -605,13 +611,18 @@ msgid ""
605611"Retrieve CRLs from Windows' system cert store. *store_name* may be one of "
606612"``CA``, ``ROOT`` or ``MY``. Windows may provide additional cert stores, too."
607613msgstr ""
614+ "從 Windows 的系統憑證儲存庫中搜尋 CRLs。*store_name* 可以是 ``CA``、``ROOT`` "
615+ "或 ``MY`` 的其中一個。Windows 也可能會提供額外的憑證儲存庫。"
608616
609617#: ../../library/ssl.rst:442
610618msgid ""
611619"The function returns a list of (cert_bytes, encoding_type, trust) tuples. "
612620"The encoding_type specifies the encoding of cert_bytes. It is either :const:"
613621"`x509_asn` for X.509 ASN.1 data or :const:`pkcs_7_asn` for PKCS#7 ASN.1 data."
614622msgstr ""
623+ "此函式會回傳一個元組 (cert_bytes, encoding_type, trust) 串列。encoding_type "
624+ "指定了 cert_bytes 的編碼格式。它可以是用來表示 X.509 ASN.1 資料的 :const:"
625+ "`x509_asn` 或是用來表示 PKCS#7 ASN.1 資料的 :const:`pkcs_7_asn`。"
615626
616627#: ../../library/ssl.rst:453
617628msgid "Constants"
@@ -622,6 +633,7 @@ msgid ""
622633"All constants are now :class:`enum.IntEnum` or :class:`enum.IntFlag` "
623634"collections."
624635msgstr ""
636+ "所有的常數現在都是 :class:`enum.IntEnum` 或 :class:`enum.IntFlag` 的集合。"
625637
626638#: ../../library/ssl.rst:461
627639msgid ""
@@ -630,12 +642,17 @@ msgid ""
630642"just about any cert is accepted. Validation errors, such as untrusted or "
631643"expired cert, are ignored and do not abort the TLS/SSL handshake."
632644msgstr ""
645+ ":attr:`SSLContext.verify_mode` 可能的值。除了 :attr:`SSLContext.verify_mode` "
646+ "外,這是預設的模式。對於客戶端的 sockets,幾乎任何憑證都能被允許。驗證錯誤,"
647+ "像是不被信任或是過期的憑證,會被忽略並不會中止 TLS/SSL 握手。"
633648
634649#: ../../library/ssl.rst:467
635650msgid ""
636651"In server mode, no certificate is requested from the client, so the client "
637652"does not send any for client cert authentication."
638653msgstr ""
654+ "在伺服器模式下,不會從客戶端請求任何憑證,所以客戶端不用發送任何用於客戶端憑"
655+ "證身分驗證的憑證。"
639656
640657#: ../../library/ssl.rst:470 ../../library/ssl.rst:2245
641658msgid "See the discussion of :ref:`ssl-security` below."
@@ -647,6 +664,9 @@ msgid ""
647664"`CERT_OPTIONAL` has the same meaning as :const:`CERT_REQUIRED`. It is "
648665"recommended to use :const:`CERT_REQUIRED` for client-side sockets instead."
649666msgstr ""
667+ ":attr:`SSLContext.verify_mode` 可能的值。在客戶端模式下,:const:"
668+ "`CERT_OPTIONAL` 具有與 :const:`CERT_REQUIRED` 相同的含意。對於客戶端 sockets "
669+ "推薦改用 :const:`CERT_REQUIRED`。"
650670
651671#: ../../library/ssl.rst:479
652672msgid ""
@@ -656,12 +676,17 @@ msgid ""
656676"certificate, it is verified. Any verification error immediately aborts the "
657677"TLS handshake."
658678msgstr ""
679+ "在伺服器模式下,客戶憑證請求會被發送給客戶端。客戶端可以選擇忽略請求或是選擇"
680+ "發送憑證來執行 TLS 客戶端憑證身分驗證。如果客戶端選擇發送憑證,則會對其進行驗"
681+ "證。任何驗證錯誤都會立刻終止 TLS 握手。"
659682
660683#: ../../library/ssl.rst:485 ../../library/ssl.rst:504
661684msgid ""
662685"Use of this setting requires a valid set of CA certificates to be passed to :"
663686"meth:`SSLContext.load_verify_locations`."
664687msgstr ""
688+ "使用此設定需要將一組有效的 CA 憑證傳送給 :meth:`SSLContext."
689+ "load_verify_locations`。"
665690
666691#: ../../library/ssl.rst:490
667692msgid ""
@@ -674,24 +699,34 @@ msgid ""
674699"cert. :const:`PROTOCOL_TLS_CLIENT` uses :const:`CERT_REQUIRED` and enables :"
675700"attr:`~SSLContext.check_hostname` by default."
676701msgstr ""
702+ ":attr:`SSLContext.verify_mode` 可能的值。在這個模式下,需要從 socket 連線的另"
703+ "一端獲取憑證;如果未提供憑證或是驗證失敗,則將會導致 :class:`SSLError`。此模"
704+ "式 **不能** 在客戶端模式下對憑證進行驗證,因為它無法去配對主機名稱。:attr:"
705+ "`~SSLContext.check_hostname` 也必須被開起來來驗證憑證的真實性。:const:"
706+ "`PROTOCOL_TLS_CLIENT` 會使用 :const:`CERT_REQUIRED` 並預設開啟 :attr:"
707+ "`~SSLContext.check_hostname`。"
677708
678709#: ../../library/ssl.rst:500
679710msgid ""
680711"With server socket, this mode provides mandatory TLS client cert "
681712"authentication. A client certificate request is sent to the client and the "
682713"client must provide a valid and trusted certificate."
683714msgstr ""
715+ "對於 socket 伺服器,此模式會提供強制的 TLS 客戶端憑證驗證。客戶端憑證請求會被"
716+ "發送給客戶端並且客戶端必須提供有效且被信任的憑證。"
684717
685718#: ../../library/ssl.rst:509
686719msgid ":class:`enum.IntEnum` collection of CERT_* constants."
687- msgstr ""
720+ msgstr ":class:`enum.IntEnum` 為 CERT_* 常數的一個集合。 "
688721
689722#: ../../library/ssl.rst:515
690723msgid ""
691724"Possible value for :attr:`SSLContext.verify_flags`. In this mode, "
692725"certificate revocation lists (CRLs) are not checked. By default OpenSSL does "
693726"neither require nor verify CRLs."
694727msgstr ""
728+ ":attr:`SSLContext.verify_flags` 可能的值。在此模式下,不會檢查憑證吊銷列表 "
729+ "(CRLs)。預設的 OpenSSL 並不會請求及驗證 CRLs。"
695730
696731#: ../../library/ssl.rst:523
697732msgid ""
@@ -701,31 +736,41 @@ msgid ""
701736"ancestor CA). If no proper CRL has been loaded with :attr:`SSLContext."
702737"load_verify_locations`, validation will fail."
703738msgstr ""
739+ ":attr:`SSLContext.verify_flags` 可能的值。在此模式下,只會檢查同等的憑證而不"
740+ "會去檢查中間的 CA 憑證。此模式需要提供由對等憑證發行者 (它的直接上級 CA) 的有"
741+ "效的 CRL 簽名。如果沒有用 :attr:`SSLContext.load_verify_locations` 載入適當"
742+ "的 CRL,則會驗證失敗。"
704743
705744#: ../../library/ssl.rst:533
706745msgid ""
707746"Possible value for :attr:`SSLContext.verify_flags`. In this mode, CRLs of "
708747"all certificates in the peer cert chain are checked."
709748msgstr ""
749+ ":attr:`SSLContext.verify_flags` 可能的值。在此模式下,會檢查對等憑證鍊中所有"
750+ "憑證的 CRLs。"
710751
711752#: ../../library/ssl.rst:540
712753msgid ""
713754"Possible value for :attr:`SSLContext.verify_flags` to disable workarounds "
714755"for broken X.509 certificates."
715756msgstr ""
757+ ":attr:`SSLContext.verify_flags` 可能的值,用來禁用已損壞的 X.509 憑證的解決方"
758+ "法。"
716759
717760#: ../../library/ssl.rst:547
718761msgid ""
719762"Possible value for :attr:`SSLContext.verify_flags` to enables proxy "
720763"certificate verification."
721- msgstr ""
764+ msgstr ":attr:`SSLContext.verify_flags` 可能的值,用來啟用憑證代理驗證。 "
722765
723766#: ../../library/ssl.rst:554
724767msgid ""
725768"Possible value for :attr:`SSLContext.verify_flags`. It instructs OpenSSL to "
726769"prefer trusted certificates when building the trust chain to validate a "
727770"certificate. This flag is enabled by default."
728771msgstr ""
772+ ":attr:`SSLContext.verify_flags` 可能的值。它指示 OpenSSL 在構建信任鍊來驗證憑"
773+ "證時會優先使用被信任的憑證。此旗標預設開啟。"
729774
730775#: ../../library/ssl.rst:562
731776msgid ""