As promised during the meeting, I've done some review of partman-crypto debconf templates. I first focused on making everything translatable. I also proofread the new templates And, finally, I focused on adding useful comments for translators. Please note that I have used recent features from po-debconf to better target comment and/or not translate some things (like the "${ITEMS}" stuff alone in one paragraph). I attach both the proposed new file and a diff. Please comment. I do not commit this on purpose as this would add many strings to PO files before the discussion is finished. --
Template: partman/method_long/crypto Type: text # File system name # Keep translations short enough _Description: physical volume for encryption Template: partman/method_short/crypto Type: text # Short file system name (untranslatable in many languages) # Should be kept very short or unstranslated _Description: crypto Template: partman-crypto/crypto_type/loop-AES Type: text # This is related to "encryption method" # Encryption type for a filesystem # Translations should be kept below 40 columns _Description: Loopback (loop-AES) Template: partman-crypto/crypto_type/dm-crypt Type: text # This is related to "encryption method" # Encryption type for a filesystem # Translations should be kept below 40 columns _Description: Device-mapper (dm-crypt) Template: partman-crypto/text/cryptdev_description Type: text Description: ${CIPHER} ${KEYTYPE} Template: partman-crypto/text/not_active Type: text # This is related to "encryption method" # Encryption type for a filesystem # This is related to "encryption method" _Description: not active Template: partman-crypto/text/specify_crypto_type Type: text _Description: Encryption method: Template: partman-crypto/crypto_type Type: select Choices: ${CHOICES} _Description: Encryption method for this partition: Template: partman-crypto/text/specify_cipher Type: text _Description: Encryption: Template: partman-crypto/cipher Type: select Choices: ${choices} _Description: Encryption for this partition: Template: partman-crypto/text/specify_keysize Type: text _Description: Key size: Template: partman-crypto/keysize Type: select Choices: ${choices} _Description: Key size for this partition: Template: partman-crypto/text/specify_ivalgorithm Type: text # An initialization vector is the initial randomness used to seed # the encryption algorithm _Description: IV algorithm: Template: partman-crypto/ivalgorithm Type: select Choices: ${choices} # An initialization vector is the initial randomness used to seed # the encryption algorithm _Description: Initialization vector generation algorithm for this partition: Template: partman-crypto/text/specify_keytype Type: text _Description: Encryption key: Template: partman-crypto/keytype Type: select Choices: ${choices} _Description: Type of encryption key for this partition: Template: partman-crypto/text/specify_keyhash Type: text _Description: Encryption key hash: Template: partman-crypto/keyhash Type: select Choices: ${choices} _Description: Type of encryption key hash for this partition: Template: partman-crypto/text/erase_data Type: text # This shows up in a screen summarizing options and will be followed # by "yes" or "no" _Description: Erase data: Template: partman-crypto/text/erase_data_partition Type: text _Description: Erase data on this partition Template: partman-crypto/warn_erase Type: boolean Default: false _Description: Really erase the data on ${DEVICE}? The data on ${DEVICE} will be overwritten with random data. It can no longer be recovered after this step has completed. This is the last opportunity to abort the erase. Template: partman-crypto/progress/erase Type: text _Description: Erasing data on ${DEVICE} Template: partman-crypto/erase_failed Type: error _Description: Erasing data on ${DEVICE} failed An error occured trying to erase the data on ${DEVICE}. The data has not been erased. Template: partman/progress/init/crypto Type: text _Description: Setting up encryption... Template: partman-crypto/text/configure_crypto Type: text _Description: Configure encrypted volumes Template: partman-crypto/nothing_to_setup Type: note _Description: No partitions to encrypt No partitions have been selected for encryption. Template: partman-crypto/tools_missing Type: note _Description: Required programs missing This build of debian-installer does not include one or more programs that are required for partman-crypto to function correctly. Template: partman-crypto/options_missing Type: error #flag:translate!:3 _Description: Required encryption options missing The encryption options for ${DEVICE} are incomplete. Please return to the partition menu and select all required options. . ${ITEMS} Template: partman-crypto/text/missing Type: text # Translators: this string is used to assemble a string of the format # "$specify_option: $missing". If this proves to be a problem in your # language, please contact the maintainer and we can do it differently. _Description: missing Template: partman-crypto/module_package_missing Type: error _Description: Encryption package installation failure The kernel module package ${PACKAGE} could not be found or an error occurred during installation. . There will likely be problems during boot when the system tries to setup encrypted partitions. You can still correct them by installing the required package later on. Template: partman-crypto/confirm Type: boolean Default: false #flag:translate!:4 _Description: Write the changes to disks and configure encrypted volumes? Before encrypted volumes can be configured, the current partitioning scheme has to be written to disk. These changes cannot be undone. . After the encrypted volumes have been configured, no additional changes to the partitions in the disks containing encrypted volumes are allowed. Please decide if you are satisfied with the current partitioning scheme in these disks before continuing. . ${ITEMS} Template: partman-crypto/confirm_nochanges Type: boolean Default: false _Description: Keep current partition layout and configure encrypted volumes? After the encrypted volumes have been configured, no additional changes to the partitions in the disks containing encrypted volumes are allowed. Please decide if you are satisfied with the current partitioning scheme in these disks before continuing. Template: partman-crypto/commit_failed Type: error _Description: Encrypted volumes configuration failure An error occurred while configuring encrypted volumes. . The configuration is aborted. Template: partman-crypto/init_failed Type: error _Description: Encrypted volume initialisation failed An error occurred while setting up encrypted volumes. Template: partman-crypto/text/keytype/passphrase Type: text # This is a key type for encrypted file systems # It can be either protected by a passphrase, a keyfile # of a random key # This text is one of these choices, so keep it short _Description: Passphrase Template: partman-crypto/text/keytype/keyfile Type: text # This is a key type for encrypted file systems # It can be either protected by a passphrase, a keyfile # of a random key # This text is one of these choices, so keep it short _Description: Keyfile (GnuPG) Template: partman-crypto/text/keytype/random Type: text # This is a key type for encrypted file systems # It can be either protected by a passphrase, a keyfile # of a random key # This text is one of these choices, so keep it short _Description: Random key Template: partman-crypto/unsafe_swap Type: error _Description: Unsafe swap space detected An unsafe swap space has been detected. . This is a fatal error since sensitive data could be written out to disk unencrypted. This would allow someone with access to the disk to recover parts of the encryption key or passphrase. . Please disable the swap space (e.g. by running swapoff) or configure an encrypted swap space and then run setup of encrypted volumes again. This program will now abort. Template: partman-crypto/passphrase Type: password _Description: Encryption passphrase: You need to choose a passphrase to encrypt ${DEVICE}. . The overall strength of the encryption depends strongly on this passphrase, so you should take care to choose a passphrase that is not easy to guess. It should not be a word or sentence found in dictionaries, or a phrase that could be easily associated with you. . A good passphrase will contain a mixture of letters, numbers and punctuation. Passphrases are recommended to have a length of 20 or more characters. Template: partman-crypto/passphrase-again Type: password _Description: Re-enter passphrase to verify: Please enter the same passphrase again to verify that you have typed it correctly. Template: partman-crypto/passphrase-mismatch Type: error _Description: Passphrase input error The two passphrases you entered were not the same. Please try again. Template: partman-crypto/passphrase-empty Type: note _Description: Empty passphrase You entered an empty passphrase, which is not allowed. Please choose a non-empty passphrase. Template: partman-crypto/weak_passphrase Type: boolean Default: false #flag:comment:2 # Translators: we unfortunately cannot use plural forms here # So, you are suggested to use the plural form adapted for # MINIMUM=8, which is the current hardcoded value _Description: Use weak passphrase? You entered a passphrase that consists of less than ${MINIMUM} characters, which is considered too weak. You should choose a stronger passphrase. Template: partman-crypto/entropy-text Type: entropy-text _Description: Enter random characters The encryption key for ${DEVICE} is now being created. . You can help speed up the process by entering random characters on the keyboard, or just wait until enough keydata has been collected. (NOTE: this can take a long time) Template: partman-crypto/keyfile-problem Type: error _Description: Keyfile creation failure An error occurred while creating the keyfile. Template: partman-crypto/crypto_root_unimplemented Type: error _Description: Encryption configuration failure You have selected the root filesystem to be stored on an encrypted partition. This feature is not available and continuing now would result in an installation that cannot be used. . Please go back and choose a non-encrypted partition for the root filesystem. Template: partman-crypto/crypto_root_needs_boot Type: error _Description: Encryption configuration failure You have selected the root filesystem to be stored on an encrypted partition. This feature requires a separate /boot partition on which the kernel and initrd can be stored. . You should go back and configure a /boot partition. Template: partman-crypto/crypto_boot_not_possible Type: error _Description: Encryption configuration failure You have selected the /boot filesystem to be stored on an encrypted partition. This is not possible because the kernel and initrds could then not be accessed by the bootloader. Continuing now would result in an installation that cannot be used. . You should go back and choose a non-encrypted partition for the /boot filesystem. Template: partman-crypto/use_random_for_nonswap Type: boolean Default: false _Description: Are you sure you want to use a random key? You have chosen a random key type for ${DEVICE} but requested the partitioner to create a filesystem on it. . Using a random key type means that the partition data is going to be destroyed upon each reboot. This should only be used for swap partitions. Template: partman-crypto/warning_experimental_nonaudit Type: boolean Default: false _Description: Really use block device encryption? The support for block device encryption is still experimental and not considered ready for production. In particular it may result in setups that are easy to break and so give a false sense of security. There are no known encryption flaws, however, until the implementation is thoroughly audited, this feature should not be used except for testing purposes.
--- partman-crypto.templates 2006-04-29 21:25:19.891224048 +0200 +++ partman-crypto.templates.new 2006-04-30 13:00:05.082978912 +0200 @@ -1,18 +1,28 @@ Template: partman/method_long/crypto Type: text -Description: physical volume for encryption +# File system name +# Keep translations short enough +_Description: physical volume for encryption Template: partman/method_short/crypto Type: text -Description: crypto +# Short file system name (untranslatable in many languages) +# Should be kept very short or unstranslated +_Description: crypto Template: partman-crypto/crypto_type/loop-AES Type: text -Description: Loopback (loop-AES) +# This is related to "encryption method" +# Encryption type for a filesystem +# Translations should be kept below 40 columns +_Description: Loopback (loop-AES) Template: partman-crypto/crypto_type/dm-crypt Type: text -Description: Device-mapper (dm-crypt) +# This is related to "encryption method" +# Encryption type for a filesystem +# Translations should be kept below 40 columns +_Description: Device-mapper (dm-crypt) Template: partman-crypto/text/cryptdev_description Type: text @@ -20,6 +30,9 @@ Template: partman-crypto/text/not_active Type: text +# This is related to "encryption method" +# Encryption type for a filesystem +# This is related to "encryption method" _Description: not active Template: partman-crypto/text/specify_crypto_type @@ -51,12 +64,16 @@ Template: partman-crypto/text/specify_ivalgorithm Type: text -Description: IV algorithm: +# An initialization vector is the initial randomness used to seed +# the encryption algorithm +_Description: IV algorithm: Template: partman-crypto/ivalgorithm Type: select Choices: ${choices} -Description: IV generation algorithm for this partition: +# An initialization vector is the initial randomness used to seed +# the encryption algorithm +_Description: Initialization vector generation algorithm for this partition: Template: partman-crypto/text/specify_keytype Type: text @@ -69,36 +86,38 @@ Template: partman-crypto/text/specify_keyhash Type: text -Description: Encryption key hash: +_Description: Encryption key hash: Template: partman-crypto/keyhash Type: select Choices: ${choices} -Description: Type of encryption key hash for this partition: +_Description: Type of encryption key hash for this partition: Template: partman-crypto/text/erase_data Type: text -Description: Erase data: +# This shows up in a screen summarizing options and will be followed +# by "yes" or "no" +_Description: Erase data: Template: partman-crypto/text/erase_data_partition Type: text -Description: Erase data on this partition +_Description: Erase data on this partition Template: partman-crypto/warn_erase Type: boolean Default: false -Description: Are you sure you want to erase the data on ${DEVICE}? +_Description: Really erase the data on ${DEVICE}? The data on ${DEVICE} will be overwritten with random data. It can no longer be recovered after this step has completed. This is the last opportunity to abort the erase. Template: partman-crypto/progress/erase Type: text -Description: Erasing data on ${DEVICE} +_Description: Erasing data on ${DEVICE} Template: partman-crypto/erase_failed Type: error -Description: Erasing data on ${DEVICE} failed +_Description: Erasing data on ${DEVICE} failed An error occured trying to erase the data on ${DEVICE}. The data has not been erased. @@ -123,6 +142,7 @@ Template: partman-crypto/options_missing Type: error +#flag:translate!:3 _Description: Required encryption options missing The encryption options for ${DEVICE} are incomplete. Please return to the partition menu and select all required options. @@ -149,6 +169,7 @@ Template: partman-crypto/confirm Type: boolean Default: false +#flag:translate!:4 _Description: Write the changes to disks and configure encrypted volumes? Before encrypted volumes can be configured, the current partitioning scheme has to be written to disk. These changes @@ -184,14 +205,26 @@ Template: partman-crypto/text/keytype/passphrase Type: text +# This is a key type for encrypted file systems +# It can be either protected by a passphrase, a keyfile +# of a random key +# This text is one of these choices, so keep it short _Description: Passphrase Template: partman-crypto/text/keytype/keyfile Type: text +# This is a key type for encrypted file systems +# It can be either protected by a passphrase, a keyfile +# of a random key +# This text is one of these choices, so keep it short _Description: Keyfile (GnuPG) Template: partman-crypto/text/keytype/random Type: text +# This is a key type for encrypted file systems +# It can be either protected by a passphrase, a keyfile +# of a random key +# This text is one of these choices, so keep it short _Description: Random key Template: partman-crypto/unsafe_swap @@ -241,6 +274,7 @@ Template: partman-crypto/weak_passphrase Type: boolean Default: false +#flag:comment:2 # Translators: we unfortunately cannot use plural forms here # So, you are suggested to use the plural form adapted for # MINIMUM=8, which is the current hardcoded value @@ -274,22 +308,22 @@ Template: partman-crypto/crypto_root_needs_boot Type: error -Description: Encryption configuration failure +_Description: Encryption configuration failure You have selected the root filesystem to be stored on an encrypted partition. This feature requires a separate /boot partition on which the kernel and initrd can be stored. . - Please go back and configure a /boot partition. + You should go back and configure a /boot partition. Template: partman-crypto/crypto_boot_not_possible Type: error -Description: Encryption configuration failure +_Description: Encryption configuration failure You have selected the /boot filesystem to be stored on an encrypted partition. This is not possible because the kernel and initrds could then not be accessed by the bootloader. Continuing now would result in an installation that cannot be used. . - Please go back and choose a non-encrypted partition for the /boot + You should go back and choose a non-encrypted partition for the /boot filesystem. Template: partman-crypto/use_random_for_nonswap @@ -306,12 +340,9 @@ Template: partman-crypto/warning_experimental_nonaudit Type: boolean Default: false -Description: Are you sure you want to continue? - Important warning: - . +_Description: Really use block device encryption? The support for block device encryption is still experimental and not considered ready for production. In particular it may result in setups that are easy to break and so give a false sense of security. There are - no known encryption flaws, however, until we have completed a thorough - audit of the implementation, please do NOT USE this feature for production - setups unless you know what you are doing. + no known encryption flaws, however, until the implementation is thoroughly + audited, this feature should not be used except for testing purposes.
Attachment:
signature.asc
Description: Digital signature