[svnbook] r5696 committed - branches/1.8/zh/book/ ch06-server-configuration.xml
wuzhouhui at users.sourceforge.net
wuzhouhui at users.sourceforge.net
Thu May 24 07:41:38 CDT 2018
Revision: 5696
http://sourceforge.net/p/svnbook/source/5696
Author: wuzhouhui
Date: 2018-05-24 12:41:25 +0000 (Thu, 24 May 2018)
Log Message:
-----------
1.8/zh: translation of chapter 6 in progress
Modified Paths:
--------------
branches/1.8/zh/book/ch06-server-configuration.xml
Modified: branches/1.8/zh/book/ch06-server-configuration.xml
===================================================================
--- branches/1.8/zh/book/ch06-server-configuration.xml 2018-05-23 12:24:52 UTC (rev 5695)
+++ branches/1.8/zh/book/ch06-server-configuration.xml 2018-05-24 12:41:25 UTC (rev 5696)
@@ -2044,6 +2044,7 @@
<literal>ConfFile</literal> (它的值是一个指向目录的路径, 目录内含有
管理员创建的 <filename>svn.conf</filename> 文件).</para>
+ <!--
<para>Because SASL provides so many different kinds of
authentication mechanisms, it would be foolish (and far
beyond the scope of this book) to try to describe every
@@ -2057,6 +2058,14 @@
example, if your <filename>subversion.conf</filename>
(or <filename>svn.conf</filename>) file contains the
following:</para>
+ -->
+ <para>因为 SASL 提供了多种不同的认证机制, 描述每一种可能的服务器端
+ 配置是不切实际的 (而且也超出了本书的范围), 所以我们建议读者自己去
+ 阅读 SASL 源代码目录内, <filename>doc</filename> 子目录内的文档,
+ 文档详细介绍了每一种认证机制, 以及如何正确地配置服务器, 以便使用
+ 这些认证机制. 为了方便讨论, 我们将介绍一个配置 DIGEST-MD5 的简单
+ 示例. 如果你的 <filename>subversion.conf</filename> (或
+ <filename>svn.conf</filename>) 含有以下内容:</para>
<informalexample>
<programlisting>
@@ -2067,6 +2076,7 @@
</programlisting>
</informalexample>
+ <!--
<para>you've told SASL to advertise the DIGEST-MD5
mechanism to clients and to check user passwords against a
private password database located
@@ -2074,6 +2084,11 @@
administrator can then use
the <command>saslpasswd2</command> program to add or modify
usernames and passwords in the database:</para>
+ -->
+ <para>上面的配置向客户端宣告了 DIGEST-MD5 认证机制, 使用存放在
+ <filename>/etc/my_sasldb</filename> 里的私有密码数据库检查用户
+ 输入的密码的正确性. 管理员可以使用 <command>saslpasswd2</command>
+ 向密码数据库添加或修改用户名和密码:</para>
<informalexample>
<screen>
@@ -2081,6 +2096,7 @@
</screen>
</informalexample>
+ <!--
<para>A few words of warning: first, make sure the
<quote>realm</quote> argument
to <command>saslpasswd2</command> matches the same realm
@@ -2093,6 +2109,13 @@
the <command>svnserve</command> program has read access to
the file (and possibly write access as well, if you're using
a mechanism such as OTP).</para>
+ -->
+ <para>有些地方需要注意: 首先要确保 <command>saslpasswd2</command> 的
+ <quote>领域</quote> 参数和定义在 <filename>svnserve.conf</filename>
+ 里的领域是一致的, 如果它们不一致, 认证将会失败. 另外, 受限于 SASL,
+ 领域必须不带空格的字符串. 最后, 如果你决定使用标准的 SASL 密码数据
+ 库, 需要确保进程 <command>svnserve</command> 对数据库文件具有读
+ 权限 (某些认证机制—例如 OTP—还会要求写权限).</para>
<para>This is just one simple way of configuring SASL. Many
other authentication mechanisms are available, and passwords
More information about the svnbook-dev
mailing list