Chromium Code Reviews Chromium Code Reviews
Issue 8856010:
Remove the wording that suggests it is possible to proceed after fatal SSL error. (Closed)
Base URL: svn://svn.chromium.org/chrome/trunk/src/| OLD | NEW |
|---|---|
| 1 <?xml version="1.0" encoding="UTF-8"?> | 1 <?xml version="1.0" encoding="UTF-8"?> |
| 2 | 2 |
| 3 <!-- | 3 <!-- |
| 4 This file contains definitions of resources that will be translated for each | 4 This file contains definitions of resources that will be translated for each |
| 5 locale. The variables is_win, is_macosx, is_linux, and is_posix are available | 5 locale. The variables is_win, is_macosx, is_linux, and is_posix are available |
| 6 for making strings OS specific. Other platform defines such as use_titlecase | 6 for making strings OS specific. Other platform defines such as use_titlecase |
| 7 are declared in build/common.gypi. | 7 are declared in build/common.gypi. |
| 8 --> | 8 --> |
| 9 | 9 |
| 10 <grit base_dir="." latest_public_release="0" current_release="1" | 10 <grit base_dir="." latest_public_release="0" current_release="1" |
| (...skipping 2712 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... | |
| 2723 <message name="IDS_CERT_ERROR_EXTRA_INFO_TITLE" desc="The title for the ex tra information section displayed when a page contains a certificate error"> | 2723 <message name="IDS_CERT_ERROR_EXTRA_INFO_TITLE" desc="The title for the ex tra information section displayed when a page contains a certificate error"> |
| 2724 Help me understand | 2724 Help me understand |
| 2725 </message> | 2725 </message> |
| 2726 <message name="IDS_CERT_ERROR_EXTRA_INFO_1" desc="1st paragraph of extra i nformation for any certificate error"> | 2726 <message name="IDS_CERT_ERROR_EXTRA_INFO_1" desc="1st paragraph of extra i nformation for any certificate error"> |
| 2727 When you connect to a secure website, the server hosting that site prese nts your browser with something called a "certificate" to verify its identity. T his certificate contains identity information, such as the address of the websit e, which is verified by a third party that your computer trusts. By checking tha t the address in the certificate matches the address of the website, it is possi ble to verify that you are securely communicating with the website you intended, and not a third party (such as an attacker on your network). | 2727 When you connect to a secure website, the server hosting that site prese nts your browser with something called a "certificate" to verify its identity. T his certificate contains identity information, such as the address of the websit e, which is verified by a third party that your computer trusts. By checking tha t the address in the certificate matches the address of the website, it is possi ble to verify that you are securely communicating with the website you intended, and not a third party (such as an attacker on your network). |
| 2728 </message> | 2728 </message> |
| 2729 <message name="IDS_CERT_ERROR_COMMON_NAME_INVALID_TITLE" desc="Title for a n unsafe common name in an X509 certificate"> | 2729 <message name="IDS_CERT_ERROR_COMMON_NAME_INVALID_TITLE" desc="Title for a n unsafe common name in an X509 certificate"> |
| 2730 This is probably not the site you are looking for! | 2730 This is probably not the site you are looking for! |
| 2731 </message> | 2731 </message> |
| 2732 <message name="IDS_CERT_ERROR_COMMON_NAME_INVALID_DETAILS" desc="Details f or an unsafe common name in an X509 certificate"> | 2732 <message name="IDS_CERT_ERROR_COMMON_NAME_INVALID_DETAILS" desc="Details f or an unsafe common name in an X509 certificate"> |
| 2733 You attempted to reach <ph name="DOMAIN"><strong>$1<ex>paypal.com< /ex></strong></ph>, but instead you actually reached a server identifying itself as <ph name="DOMAIN2"><strong>$2<ex>fakepaypal.com</ex></strong& gt;</ph>. This may be caused by a misconfiguration on the server or by something more serious. An attacker on your network could be trying to get you to visit a fake (and potentially harmful) version of <ph name="DOMAIN3"><strong>$3<e x>paypal.com</ex></strong></ph>. You should not proceed. | 2733 You attempted to reach <ph name="DOMAIN"><strong>$1<ex>paypal.com< /ex></strong></ph>, but instead you actually reached a server identifying itself as <ph name="DOMAIN2"><strong>$2<ex>fakepaypal.com</ex></strong& gt;</ph>. This may be caused by a misconfiguration on the server or by something more serious. An attacker on your network could be trying to get you to visit a fake (and potentially harmful) version of <ph name="DOMAIN3"><strong>$3<e x>paypal.com</ex></strong></ph>. |
| 2734 </message> | 2734 </message> |
| 2735 <message name="IDS_CERT_ERROR_COMMON_NAME_INVALID_DESCRIPTION" desc="Descr iption for an unsafe common name in an X509 certificate"> | 2735 <message name="IDS_CERT_ERROR_COMMON_NAME_INVALID_DESCRIPTION" desc="Descr iption for an unsafe common name in an X509 certificate"> |
| 2736 Server's certificate does not match the URL. | 2736 Server's certificate does not match the URL. |
| 2737 </message> | 2737 </message> |
| 2738 | 2738 |
| 2739 <message name="IDS_CERT_ERROR_EXPIRED_TITLE" desc="Title for an expired X5 09 certificate"> | 2739 <message name="IDS_CERT_ERROR_EXPIRED_TITLE" desc="Title for an expired X5 09 certificate"> |
| 2740 The site's security certificate has expired! | 2740 The site's security certificate has expired! |
| 2741 </message> | 2741 </message> |
| 2742 <message name="IDS_CERT_ERROR_EXPIRED_DETAILS_EXTRA_INFO_2" desc="2nd para graph of extra information for an expired X509 certificate"> | 2742 <message name="IDS_CERT_ERROR_EXPIRED_DETAILS_EXTRA_INFO_2" desc="2nd para graph of extra information for an expired X509 certificate"> |
| 2743 For a certificate which has not expired, the issuer of that certificate is responsible for maintaining something called a "revocation list". If a certif icate is ever compromised, the issuer can revoke it by adding it to the revocati on list, and then this certificate will no longer be trusted by your browser. Re vocation status is not required to be maintained for expired certificates, so wh ile this certificate used to be valid for the website you're visiting, at this p oint it is not possible to determine whether the certificate was compromised and subsequently revoked, or whether it remains secure. As such it is impossible to tell whether you're communicating with the legitimate website, or whether the c ertificate was compromised and is now in the possession of an attacker with whom you are communicating. You should not proceed past this point. | 2743 For a certificate which has not expired, the issuer of that certificate is responsible for maintaining something called a "revocation list". If a certif icate is ever compromised, the issuer can revoke it by adding it to the revocati on list, and then this certificate will no longer be trusted by your browser. Re vocation status is not required to be maintained for expired certificates, so wh ile this certificate used to be valid for the website you're visiting, at this p oint it is not possible to determine whether the certificate was compromised and subsequently revoked, or whether it remains secure. As such it is impossible to tell whether you're communicating with the legitimate website, or whether the c ertificate was compromised and is now in the possession of an attacker with whom you are communicating. You should not proceed past this point. |
|
Ryan Sleevi
2011/12/15 01:50:04
And this?
palmer
2011/12/15 02:17:41
Done.
| |
| 2744 </message> | 2744 </message> |
| 2745 <message name="IDS_CERT_ERROR_EXPIRED_DESCRIPTION" desc="Description for a n expired X509 certificate"> | 2745 <message name="IDS_CERT_ERROR_EXPIRED_DESCRIPTION" desc="Description for a n expired X509 certificate"> |
| 2746 Server's certificate has expired. | 2746 Server's certificate has expired. |
| 2747 </message> | 2747 </message> |
| 2748 | 2748 |
| 2749 <message name="IDS_CERT_ERROR_NOT_YET_VALID_TITLE" desc="Title for an X509 certificate that is not yet valid"> | 2749 <message name="IDS_CERT_ERROR_NOT_YET_VALID_TITLE" desc="Title for an X509 certificate that is not yet valid"> |
| 2750 The server's security certificate is not yet valid! | 2750 The server's security certificate is not yet valid! |
| 2751 </message> | 2751 </message> |
| 2752 <message name="IDS_CERT_ERROR_NOT_YET_VALID_DETAILS_EXTRA_INFO_2" desc="2n d paragraph of extra information for a X509 certificate that is not yet valid"> | 2752 <message name="IDS_CERT_ERROR_NOT_YET_VALID_DETAILS_EXTRA_INFO_2" desc="2n d paragraph of extra information for a X509 certificate that is not yet valid"> |
| 2753 Certificates have a validity period, much like any identity document (su ch as a passport) that you may have. The certificate presented to your browser i s not yet valid. When a certificate is outside of its validity period, certain i nformation about the status of the certificate (whether it has been revoked and should no longer be trusted) is not required to be maintained. As such, it is no t possible to verify that this certificate is trustworthy. You should not procee d. | 2753 Certificates have a validity period, much like any identity document (su ch as a passport) that you may have. The certificate presented to your browser i s not yet valid. When a certificate is outside of its validity period, certain i nformation about the status of the certificate (whether it has been revoked and should no longer be trusted) is not required to be maintained. As such, it is no t possible to verify that this certificate is trustworthy. You should not procee d. |
| (...skipping 42 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... | |
| 2796 No revocation mechanism found in the server's certificate. | 2796 No revocation mechanism found in the server's certificate. |
| 2797 </message> | 2797 </message> |
| 2798 <message name="IDS_CERT_ERROR_NO_REVOCATION_MECHANISM_DESCRIPTION" desc="D escription for not finding a revocation mechanism in an X509 certificate"> | 2798 <message name="IDS_CERT_ERROR_NO_REVOCATION_MECHANISM_DESCRIPTION" desc="D escription for not finding a revocation mechanism in an X509 certificate"> |
| 2799 No revocation mechanism found. | 2799 No revocation mechanism found. |
| 2800 </message> | 2800 </message> |
| 2801 | 2801 |
| 2802 <message name="IDS_CERT_ERROR_REVOKED_CERT_TITLE" desc="Title of the error page for a revoked certificate"> | 2802 <message name="IDS_CERT_ERROR_REVOKED_CERT_TITLE" desc="Title of the error page for a revoked certificate"> |
| 2803 The server's security certificate is revoked! | 2803 The server's security certificate is revoked! |
| 2804 </message> | 2804 </message> |
| 2805 <message name="IDS_CERT_ERROR_REVOKED_CERT_DETAILS" desc="Details of the e rror page for a revoked certificate"> | 2805 <message name="IDS_CERT_ERROR_REVOKED_CERT_DETAILS" desc="Details of the e rror page for a revoked certificate"> |
| 2806 You attempted to reach <ph name="DOMAIN"><strong>$1<ex>paypal.com< /ex></strong></ph>, but the certificate that the server presented has been revoked by its issuer. This means that the security credentials the server pres ented absolutely should not be trusted. You may be communicating with an attacke r. You should not proceed. | 2806 You attempted to reach <ph name="DOMAIN"><strong>$1<ex>paypal.com< /ex></strong></ph>, but the certificate that the server presented has been revoked by its issuer. This means that the security credentials the server pres ented absolutely should not be trusted. You may be communicating with an attacke r. |
| 2807 </message> | 2807 </message> |
| 2808 <message name="IDS_CERT_ERROR_REVOKED_CERT_EXTRA_INFO_2" desc="2nd paragra ph of extra information for a revoked X509 certificate"> | 2808 <message name="IDS_CERT_ERROR_REVOKED_CERT_EXTRA_INFO_2" desc="2nd paragra ph of extra information for a revoked X509 certificate"> |
| 2809 In this case, the certificate presented to your browser has been revoked by its issuer. This usually means that the integrity of this certificate has be en compromised, and that the certificate should not be trusted. You absolutely s hould not proceed past this point. | 2809 In this case, the certificate presented to your browser has been revoked by its issuer. This usually means that the integrity of this certificate has be en compromised, and that the certificate should not be trusted. You absolutely s hould not proceed past this point. |
|
Ryan Sleevi
2011/12/15 01:50:04
And this
palmer
2011/12/15 02:17:41
Done.
| |
| 2810 </message> | 2810 </message> |
| 2811 <message name="IDS_CERT_ERROR_REVOKED_CERT_DESCRIPTION" desc="Description of the error page for a revoked certificate"> | 2811 <message name="IDS_CERT_ERROR_REVOKED_CERT_DESCRIPTION" desc="Description of the error page for a revoked certificate"> |
| 2812 Server's certificate has been revoked. | 2812 Server's certificate has been revoked. |
| 2813 </message> | 2813 </message> |
| 2814 | 2814 |
| 2815 <message name="IDS_CERT_ERROR_INVALID_CERT_TITLE" desc="Title of the error page for an X509 certificate that is invalid"> | 2815 <message name="IDS_CERT_ERROR_INVALID_CERT_TITLE" desc="Title of the error page for an X509 certificate that is invalid"> |
| 2816 Invalid Server Certificate | 2816 Invalid Server Certificate |
| 2817 </message> | 2817 </message> |
| 2818 <message name="IDS_CERT_ERROR_INVALID_CERT_DETAILS" desc="Details of the e rror page for an X509 certificate that is invalid"> | 2818 <message name="IDS_CERT_ERROR_INVALID_CERT_DETAILS" desc="Details of the e rror page for an X509 certificate that is invalid"> |
| 2819 You attempted to reach <ph name="DOMAIN"><strong>$1<ex>paypal.com< /ex></strong></ph>, but the server presented an invalid certificate. | 2819 You attempted to reach <ph name="DOMAIN"><strong>$1<ex>paypal.com< /ex></strong></ph>, but the server presented an invalid certificate. |
| 2820 </message> | 2820 </message> |
| 2821 <message name="IDS_CERT_ERROR_INVALID_CERT_EXTRA_INFO_2" desc="2nd paragra ph of extra information for an X509 certificate that is invalid"> | 2821 <message name="IDS_CERT_ERROR_INVALID_CERT_EXTRA_INFO_2" desc="2nd paragra ph of extra information for an X509 certificate that is invalid"> |
| 2822 In this case, the server certificate or an intermediate CA certificate p resented to your browser is invalid. This may mean that the certificate is malfo rmed, contains invalid fields, or is not supported. | 2822 In this case, the server certificate or an intermediate CA certificate p resented to your browser is invalid. This may mean that the certificate is malfo rmed, contains invalid fields, or is not supported. |
| 2823 </message> | 2823 </message> |
| 2824 <message name="IDS_CERT_ERROR_INVALID_CERT_DESCRIPTION" desc="Description of the error page for an X509 certificate that is invalid"> | 2824 <message name="IDS_CERT_ERROR_INVALID_CERT_DESCRIPTION" desc="Description of the error page for an X509 certificate that is invalid"> |
| 2825 Server's certificate is invalid. | 2825 Server's certificate is invalid. |
| 2826 </message> | 2826 </message> |
| 2827 | 2827 |
| 2828 <message name="IDS_CERT_ERROR_WEAK_SIGNATURE_ALGORITHM_TITLE" desc="Title of the error page for a certificate signed using a weak signature algorithm"> | 2828 <message name="IDS_CERT_ERROR_WEAK_SIGNATURE_ALGORITHM_TITLE" desc="Title of the error page for a certificate signed using a weak signature algorithm"> |
| 2829 The site's security certificate is signed using a weak signature algorit hm! | 2829 The site's security certificate is signed using a weak signature algorit hm! |
| 2830 </message> | 2830 </message> |
| 2831 <message name="IDS_CERT_ERROR_WEAK_SIGNATURE_ALGORITHM_DETAILS" desc="Deta ils of the error page for a certificate signed using a weak signature algorithm" > | 2831 <message name="IDS_CERT_ERROR_WEAK_SIGNATURE_ALGORITHM_DETAILS" desc="Deta ils of the error page for a certificate signed using a weak signature algorithm" > |
| 2832 You attempted to reach <ph name="DOMAIN"><strong>$1<ex>paypal.com< /ex></strong></ph>, but the server presented a certificate signed using a weak signature algorithm. This means that the security credentials the server pr esented could have been forged, and the server may not be the server you expecte d (you may be communicating with an attacker). You should not proceed. | 2832 You attempted to reach <ph name="DOMAIN"><strong>$1<ex>paypal.com< /ex></strong></ph>, but the server presented a certificate signed using a weak signature algorithm. This means that the security credentials the server pr esented could have been forged, and the server may not be the server you expecte d (you may be communicating with an attacker). |
| 2833 </message> | 2833 </message> |
| 2834 <message name="IDS_CERT_ERROR_WEAK_SIGNATURE_ALGORITHM_EXTRA_INFO_2" desc= "2nd paragraph of extra information for a X509 certificate signed using a weak s ignature algorithm"> | 2834 <message name="IDS_CERT_ERROR_WEAK_SIGNATURE_ALGORITHM_EXTRA_INFO_2" desc= "2nd paragraph of extra information for a X509 certificate signed using a weak s ignature algorithm"> |
| 2835 In this case, the server certificate or an intermediate CA certificate p resented to your browser is signed using a weak signature algorithm such as RSA- MD2. Recent research by computer scientists showed the signature algorithm is we aker than previously believed, and the signature algorithm is rarely used by tru stworthy websites today. This certificate could have been forged. You should not proceed past this point. | 2835 In this case, the server certificate or an intermediate CA certificate p resented to your browser is signed using a weak signature algorithm such as RSA- MD2. Recent research by computer scientists showed the signature algorithm is we aker than previously believed, and the signature algorithm is rarely used by tru stworthy websites today. This certificate could have been forged. You should not proceed past this point. |
|
Ryan Sleevi
2011/12/15 01:50:04
Here?
palmer
2011/12/15 02:17:41
Done.
| |
| 2836 </message> | 2836 </message> |
| 2837 <message name="IDS_CERT_ERROR_WEAK_SIGNATURE_ALGORITHM_DESCRIPTION" desc=" Description of the error page for a certificate signed using a weak signature al gorithm"> | 2837 <message name="IDS_CERT_ERROR_WEAK_SIGNATURE_ALGORITHM_DESCRIPTION" desc=" Description of the error page for a certificate signed using a weak signature al gorithm"> |
| 2838 Server's certificate is signed using a weak signature algorithm. | 2838 Server's certificate is signed using a weak signature algorithm. |
| 2839 </message> | 2839 </message> |
| 2840 | 2840 |
| 2841 <message name="IDS_CERT_ERROR_NOT_IN_DNS_TITLE" desc="Title of the error p age for a certificate which was excluded by DNS data"> | 2841 <message name="IDS_CERT_ERROR_NOT_IN_DNS_TITLE" desc="Title of the error p age for a certificate which was excluded by DNS data"> |
| 2842 Unlisted Server Certificate | 2842 Unlisted Server Certificate |
| 2843 </message> | 2843 </message> |
| 2844 <message name="IDS_CERT_ERROR_NOT_IN_DNS_DESCRIPTION" desc="Description of the error for a certificate which was excluded by DNS data"> | 2844 <message name="IDS_CERT_ERROR_NOT_IN_DNS_DESCRIPTION" desc="Description of the error for a certificate which was excluded by DNS data"> |
| 2845 Server's certificate is not included in DNS. | 2845 Server's certificate is not included in DNS. |
| (...skipping 4806 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... | |
| 7652 <!-- SSL Blocking Page --> | 7652 <!-- SSL Blocking Page --> |
| 7653 <message name="IDS_SSL_BLOCKING_PAGE_TITLE" desc="The title of the SSL blo cking page."> | 7653 <message name="IDS_SSL_BLOCKING_PAGE_TITLE" desc="The title of the SSL blo cking page."> |
| 7654 SSL Error | 7654 SSL Error |
| 7655 </message> | 7655 </message> |
| 7656 <message name="IDS_SSL_BLOCKING_PAGE_PROCEED" desc="Proceed button text of the SSL blocking page."> | 7656 <message name="IDS_SSL_BLOCKING_PAGE_PROCEED" desc="Proceed button text of the SSL blocking page."> |
| 7657 Proceed anyway | 7657 Proceed anyway |
| 7658 </message> | 7658 </message> |
| 7659 <message name="IDS_SSL_BLOCKING_PAGE_EXIT" desc="'Back' button text of the SSL blocking page."> | 7659 <message name="IDS_SSL_BLOCKING_PAGE_EXIT" desc="'Back' button text of the SSL blocking page."> |
| 7660 Back to safety | 7660 Back to safety |
| 7661 </message> | 7661 </message> |
| 7662 <message name="IDS_SSL_BLOCKING_PAGE_SHOULD_NOT_PROCEED" desc="Message adv ising the user not to proceed."> | |
|
Ryan Sleevi
2011/12/15 01:50:04
From the most recent e-mails re: i18n/l10n, I don'
palmer
2011/12/15 02:17:41
Done.
| |
| 7663 You should not proceed, <strong>especially</strong> if you h ave never seen this warning before for this site. | |
| 7664 </message> | |
| 7662 | 7665 |
| 7663 <!-- SSL Error Page --> | 7666 <!-- SSL Error Page --> |
| 7664 <message name="IDS_SSL_ERROR_PAGE_TITLE" desc="The title of the SSL error page."> | 7667 <message name="IDS_SSL_ERROR_PAGE_TITLE" desc="The title of the SSL error page."> |
| 7665 Security Error | 7668 Security Error |
| 7666 </message> | 7669 </message> |
| 7667 <message name="IDS_SSL_ERROR_PAGE_BACK" desc="Back button text of the SSL error page."> | 7670 <message name="IDS_SSL_ERROR_PAGE_BACK" desc="Back button text of the SSL error page."> |
| 7668 Back | 7671 Back |
| 7669 </message> | 7672 </message> |
| 7670 | 7673 |
| 7671 <!-- Misc strings for SSL UI --> | 7674 <!-- Misc strings for SSL UI --> |
| (...skipping 7091 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... | |
| 14763 </messages> | 14766 </messages> |
| 14764 <structures fallback_to_english="true"> | 14767 <structures fallback_to_english="true"> |
| 14765 <!-- Make sure these stay in sync with the structures in generated_resourc es.grd. --> | 14768 <!-- Make sure these stay in sync with the structures in generated_resourc es.grd. --> |
| 14766 <structure name="IDD_CHROME_FRAME_FIND_DIALOG" file="cf_resources.rc" type ="dialog" > | 14769 <structure name="IDD_CHROME_FRAME_FIND_DIALOG" file="cf_resources.rc" type ="dialog" > |
| 14767 </structure> | 14770 </structure> |
| 14768 <structure name="IDD_CHROME_FRAME_READY_PROMPT" file="cf_resources.rc" typ e="dialog" > | 14771 <structure name="IDD_CHROME_FRAME_READY_PROMPT" file="cf_resources.rc" typ e="dialog" > |
| 14769 </structure> | 14772 </structure> |
| 14770 </structures> | 14773 </structures> |
| 14771 </release> | 14774 </release> |
| 14772 </grit> | 14775 </grit> |
| OLD | NEW |
