[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kde-i18n-doc
Subject:    Re: kgpgcertmanager translation
From:       Bernhard Reiter <bernhard () intevation ! de>
Date:       2003-05-20 19:37:06
[Download RAW message or body]


On Tue, May 20, 2003 at 09:09:57PM +0200, Ralf Nolden wrote:

> To support older CA's who didn't really follow standard implementations, 

To be precise you have to say "some older" CAs.
Other CAs then the one in question might be broken in other ways.

> we had to add a checkbox that enables supporting those CAs to create 
> (for those CA's) valid certificate requests that they can process. 

I even wouldn't call them "valid" for this reason. :)

> The thing in question 
> is that the email of the requester (say, nolden@kde.org) needs to be added as 
> a tag in the DN header. Therefore, the checkbox says:
> 
> "Add email to DN for broken CAs"

I believe this to be a good description.
However we might add hint for translators
that this is activating a specific workaround 
for some CAs that can only process broken request
with the infamous email in RDN.

> The german translation however turned into something like: send an email to 
> the CA if things don't work (I'd have to look that up again, now using 
> english so I can see the original text).

That would be a missleading translation indeed,
there are many ways in which CAs can fail or things don't work.

A better translation probably would be
   "Activiere 'E-Mail in DN-Speicherung' für fehlerhafte CAs".

> If you have an idea how to call that string with a more clear explanation 
> please let me know. I think this is way too specific for anyone not dealing 
> with the cryptography issues, although we need to have something like 
> "include support for older certificate authorities".
> 
> Bernhard may share his comment on this too. I think the best would be to say:
> 
> "include support for non-X509v3 CAs"
> 
> Bernhard, would that be reasonable or is "support for older certificate 
> authorities" better ?

Both proposed strings are more missleading than the original message,
as some older certificate authorities might actually work
and I'm not sure if X509v3 is specific enough to describe a CA
that has the correct ability.

Thus it should be more precise and with a hint for translators.
If people don't know what the button does, they should not activate it.

	Bernhard

[Attachment #3 (application/pgp-signature)]

[prev in list] [next in list] [prev in thread] [next in thread]