Re: New debconf template for apt-cacher-ng

To: debian-l10n-english@lists.debian.org
Subject: Re: New debconf template for apt-cacher-ng
From: Eduard Bloch <edi@gmx.de>
Date: Tue, 17 Mar 2015 19:15:59 +0100
Message-id: <[🔎] 20150317181559.GA10209@rotes76.wohnheim.uni-kl.de>
In-reply-to: <[🔎] 20150315132723.GA5457@xibalba.demon.co.uk>
References: <[🔎] 20150315114551.GA27976@rotes76.wohnheim.uni-kl.de> <[🔎] 20150315132723.GA5457@xibalba.demon.co.uk>

Hallo,
* Justin B Rye [Sun, Mar 15 2015, 01:27:23PM]:
> Eduard Bloch wrote:
> > I intend to add a new debconf dialog in the apt-cacher-ng package. Since
> > English is a foreign language for me I'd appreciate if some people can
> > review it. Thanks in advance.
> > 
> > Diff is appended below, full version attached.
> 
> It would be easier if we were working from the raw
> apt-cacher-ng.templates file rather than the generated .pot... for a

Yes, sorry. But you assembled the paragraphs correctly, and the
revised version sounds good, i.e. I would take it. Thanks.

> [...]
> > #. Type: boolean
> > #. Description
> > #: ../apt-cacher-ng.templates:7001
> > msgid "Allow HTTP tunnels through Apt-Cacher NG?"
> > msgstr ""
> > 
> > #. Type: boolean
> > #. Description
> > #: ../apt-cacher-ng.templates:7001
> > msgid ""
> > "Apt-Cacher NG supports creation of HTTP tunnels that allow the local users "
> > "to access remote servers without further control of data flow. This method "
> > "is usually used for direct connections with the https protocol."
> > msgstr ""

> More importantly, "remote servers without further control of data
> flow" is a bit confusing if I don't realise it means the *users* don't
> need special network-reconfiguring privileges!  And while this makes
> it clear that unprivileged users can *access* the tunnels, it's left
> unclear whether special privileges are required to *create* them.

I was not sure how to explain this in a better way. This simply means
"any user can create a connection to any port and if your network policy
has some restrictions in place then this is a way to circumvent it".

> It's being taken for granted here that users don't already have free
> access to the Internet, leaving out any mention of the problem that
> HTTP tunneling is a solution to.
> 
> Is "this method" HTTP tunneling in general, or is it talking about
> AC-NG in particular?
> 
> Why does it claim to provide direct connections when it's a proxy?
> 
> And does AC-NG support tunneling of non-HTTPS traffic, such as random
> SSH connections that have nothing to do with package downloads?

Those are all valid questions but answering them means explains many
details, i.e. compacting http://en.wikipedia.org/wiki/HTTP_tunnel and
especially the part about CONNECT into a single question. IMHO there
should be proper documentation in the manual and that's it; those folks
who don't understand the question are provided with a default value and
a hint on why it's wise to keep it that way.

> > #. Description
> > #: ../apt-cacher-ng.templates:7001
> > msgid ""
> > "This feature is usually disabled for security reasons, enable it only for "
> > "trusted LAN environments."
> > msgstr ""
> 
> Another nitpick: that's a "comma splice", but if you make it a
> semicolon it's legal.

True... thanks again,
Eduard.

Reply to:

References:
- New debconf template for apt-cacher-ng
  - From: Eduard Bloch <edi@gmx.de>
- Re: New debconf template for apt-cacher-ng
  - From: Justin B Rye <justin.byam.rye@gmail.com>

Prev by Date: Please review and translate the Debian MIPS announcement
Next by Date: Re: Advice for dbconfig-common template
Previous by thread: Re: New debconf template for apt-cacher-ng
Next by thread: Please review and translate the Debian MIPS announcement
Index(es):
- Date
- Thread