[svnbook] r5735 committed - branches/1.8/zh/book/ ch06-server-configuration.xml
wuzhouhui at users.sourceforge.net
wuzhouhui at users.sourceforge.net
Sat Jul 28 22:23:26 CDT 2018
Revision: 5735
http://sourceforge.net/p/svnbook/source/5735
Author: wuzhouhui
Date: 2018-07-29 03:23:23 +0000 (Sun, 29 Jul 2018)
Log Message:
-----------
1.8/zh: translation of chapter 6 in progress
Modified Paths:
--------------
branches/1.8/zh/book/ch06-server-configuration.xml
Modified: branches/1.8/zh/book/ch06-server-configuration.xml
===================================================================
--- branches/1.8/zh/book/ch06-server-configuration.xml 2018-07-28 15:33:10 UTC (rev 5734)
+++ branches/1.8/zh/book/ch06-server-configuration.xml 2018-07-29 03:23:23 UTC (rev 5735)
@@ -3864,8 +3864,12 @@
<!-- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -->
<sect3 id="svn.serverconfig.httpd.authn.digest">
+ <!--
<title>Digest authentication</title>
+ -->
+ <title>Digest 认证</title>
+ <!--
<para>Digest authentication is an improvement on Basic
authentication which allows the server to verify a client's
identity without sending the password over the network
@@ -3875,12 +3879,25 @@
the server and changed each time authentication is required.
The client sends its hash to the server, and the server then
verifies that the hashes match.</para>
+ -->
+ <para>Digest 认证比 Basic 认证更加完善, 它允许服务器验证客户客户端
+ 的身份, 而不会在网络上以明文的形式传输密码. 服务器和客户端会使用
+ 不可逆的 MD5 算法计算敏感信息的散列值, 敏感信息包括用户名, 密码,
+ 所请求的 URI, 由服务器生成的 <firstterm>nonce</firstterm>
+ (一次性数字, 每次认证时都会变化). 客户端把散列值发给服务器, 服务器
+ 验证散列值是否正确.</para>
+ <!--
<para>Configuring Apache to use Digest authentication is
straightforward. You'll need to ensure that
the <literal>mod_auth_digest</literal> module is available
(instead of <literal>mod_auth_basic</literal>), and then
make a few small variations on our prior example:</para>
+ -->
+ <para>为 Apache 配置 Digest 认证非常简单, 首先你要确保模块
+ <literal>mod_auth_digest</literal> (而不是
+ <literal>mod_auth_basic</literal>) 是可用的, 然后再在上面例子的基础
+ 上做一些小改动:</para>
<informalexample>
<programlisting>
@@ -3900,6 +3917,7 @@
</programlisting>
</informalexample>
+ <!--
<para>Notice that <literal>AuthType</literal> is now set to
<literal>Digest</literal>, and we specify a different path
for <literal>AuthUserFile</literal>. Digest authentication
@@ -3911,8 +3929,19 @@
Digest authentication also has the additional concept of a
<quote>realm</quote>, which must match the value of the
<literal>AuthName</literal> directive.</para>
+ -->
+ <para>注意到 <literal>AuthType</literal> 现在被设置成了
+ <literal>Digest</literal>, 而且指定为 <literal>AuthUserFile</literal>
+ 指定了一个不同的路径. Digest 认证所使用的文件格式与 Basic 认证的
+ 不同, 这种格式的文件使用 Apache 的命令行工具
+ <command>htdigest</command> <footnote><para>见
+ <ulink url="http://httpd.apache.org/docs/current/programs/htdigest.html"
+ />.</para></footnote> 创建与管理, 而不是
+ <command>htpasswd</command>. Digest 认证也有 <quote>认证域</quote>
+ 的概念, 它由配置指令 <literal>AuthName</literal> 指定.</para>
<note>
+ <!--
<para>For digest authentication, the authentication provider
is selected using the <literal>AuthDigestProvider</literal>
as shown in the previous example. As was the case with
@@ -3922,9 +3951,20 @@
line is not strictly required unless you need to override
a different value thereof inherited from a broader
configuration context.</para>
+ -->
+ <para>Digest 认证指定认证信息来源的配置指令是
+ <literal>AuthDigestProvider</literal>,
+ <literal>AuthDigestProvider</literal> 的默认值是
+ <literal>file</literal>, 所以例子里的
+ <userinput>AuthDigestProvider file</userinput> 并不是必需的,
+ 除非你要覆盖从更广的配置上下文继承而来的, 与 <literal>file</literal>
+ 不同的值.</para>
</note>
+ <!--
<para>The password file can be created as follows:</para>
+ -->
+ <para>可以像下面这样创建密码文件:</para>
<informalexample>
<screen>
More information about the svnbook-dev
mailing list