diff options
Diffstat (limited to 'l10n-en-CA/toolkit/toolkit/neterror')
| -rw-r--r-- | l10n-en-CA/toolkit/toolkit/neterror/certError.ftl | 110 | ||||
| -rw-r--r-- | l10n-en-CA/toolkit/toolkit/neterror/netError.ftl | 147 | ||||
| -rw-r--r-- | l10n-en-CA/toolkit/toolkit/neterror/nsserrors.ftl | 349 |
3 files changed, 606 insertions, 0 deletions
diff --git a/l10n-en-CA/toolkit/toolkit/neterror/certError.ftl b/l10n-en-CA/toolkit/toolkit/neterror/certError.ftl new file mode 100644 index 0000000000..d2b4d82962 --- /dev/null +++ b/l10n-en-CA/toolkit/toolkit/neterror/certError.ftl @@ -0,0 +1,110 @@ +# This Source Code Form is subject to the terms of the Mozilla Public +# License, v. 2.0. If a copy of the MPL was not distributed with this +# file, You can obtain one at http://mozilla.org/MPL/2.0/. + +# Variables: +# $hostname (string) - Hostname of the website with cert error. +cert-error-intro = { $hostname } uses an invalid security certificate. +cert-error-mitm-intro = Websites prove their identity via certificates, which are issued by certificate authorities. +cert-error-mitm-mozilla = { -brand-short-name } is backed by the non-profit Mozilla, which administers a completely open certificate authority (CA) store. The CA store helps ensure that certificate authorities are following best practices for user security. +cert-error-mitm-connection = { -brand-short-name } uses the Mozilla CA store to verify that a connection is secure, rather than certificates supplied by the user’s operating system. So, if an antivirus program or a network is intercepting a connection with a security certificate issued by a CA that is not in the Mozilla CA store, the connection is considered unsafe. +cert-error-trust-unknown-issuer-intro = Someone could be trying to impersonate the site and you should not continue. +# Variables: +# $hostname (string) - Hostname of the website with cert error. +cert-error-trust-unknown-issuer = Websites prove their identity via certificates. { -brand-short-name } does not trust { $hostname } because its certificate issuer is unknown, the certificate is self-signed, or the server is not sending the correct intermediate certificates. +cert-error-trust-cert-invalid = The certificate is not trusted because it was issued by an invalid CA certificate. +cert-error-trust-untrusted-issuer = The certificate is not trusted because the issuer certificate is not trusted. +cert-error-trust-signature-algorithm-disabled = The certificate is not trusted because it was signed using a signature algorithm that was disabled because that algorithm is not secure. +cert-error-trust-expired-issuer = The certificate is not trusted because the issuer certificate has expired. +cert-error-trust-self-signed = The certificate is not trusted because it is self-signed. +cert-error-trust-symantec = Certificates issued by GeoTrust, RapidSSL, Symantec, Thawte, and VeriSign are no longer considered safe because these certificate authorities failed to follow security practices in the past. +cert-error-untrusted-default = The certificate does not come from a trusted source. +# Variables: +# $hostname (string) - Hostname of the website with cert error. +cert-error-domain-mismatch = Websites prove their identity via certificates. { -brand-short-name } does not trust this site because it uses a certificate that is not valid for { $hostname }. +# Variables: +# $hostname (string) - Hostname of the website with cert error. +# $alt-name (string) - Alternate domain name for which the cert is valid. +cert-error-domain-mismatch-single = Websites prove their identity via certificates. { -brand-short-name } does not trust this site because it uses a certificate that is not valid for { $hostname }. The certificate is only valid for <a data-l10n-name="domain-mismatch-link">{ $alt-name }</a>. +# Variables: +# $hostname (string) - Hostname of the website with cert error. +# $alt-name (string) - Alternate domain name for which the cert is valid. +cert-error-domain-mismatch-single-nolink = Websites prove their identity via certificates. { -brand-short-name } does not trust this site because it uses a certificate that is not valid for { $hostname }. The certificate is only valid for { $alt-name }. +# Variables: +# $hostname (string) - Hostname of the website with cert error. +# $subject-alt-names (string) - Alternate domain names for which the cert is valid. +cert-error-domain-mismatch-multiple = Websites prove their identity via certificates. { -brand-short-name } does not trust this site because it uses a certificate that is not valid for { $hostname }. The certificate is only valid for the following names: { $subject-alt-names } +# Variables: +# $hostname (string) - Hostname of the website with cert error. +# $not-after-local-time (Date) - Certificate is not valid after this time. +cert-error-expired-now = Websites prove their identity via certificates, which are valid for a set time period. The certificate for { $hostname } expired on { $not-after-local-time }. +# Variables: +# $hostname (string) - Hostname of the website with cert error. +# $not-before-local-time (Date) - Certificate is not valid before this time. +cert-error-not-yet-valid-now = Websites prove their identity via certificates, which are valid for a set time period. The certificate for { $hostname } will not be valid until { $not-before-local-time }. +# Variables: +# $error (string) - NSS error code string that specifies type of cert error. e.g. unknown issuer, invalid cert, etc. +cert-error-code-prefix = Error code: { $error } +# Variables: +# $error (string) - NSS error code string that specifies type of cert error. e.g. unknown issuer, invalid cert, etc. +cert-error-code-prefix-link = Error code: <a data-l10n-name="error-code-link">{ $error }</a> +# Variables: +# $hostname (string) - Hostname of the website with SSL error. +# $errorMessage (string) - Error message corresponding to the type of error we are experiencing. +cert-error-ssl-connection-error = An error occurred during a connection to { $hostname }. { $errorMessage } +# Variables: +# $hostname (string) - Hostname of the website with cert error. +cert-error-symantec-distrust-description = Websites prove their identity via certificates, which are issued by certificate authorities. Most browsers no longer trust certificates issued by GeoTrust, RapidSSL, Symantec, Thawte, and VeriSign. { $hostname } uses a certificate from one of these authorities and so the website’s identity cannot be proven. +cert-error-symantec-distrust-admin = You may notify the website’s administrator about this problem. +cert-error-old-tls-version = This website might not support the TLS 1.2 protocol, which is the minimum version supported by { -brand-short-name }. +# Variables: +# $hasHSTS (Boolean) - Indicates whether HSTS header is present. +cert-error-details-hsts-label = HTTP Strict Transport Security: { $hasHSTS } +# Variables: +# $hasHPKP (Boolean) - Indicates whether HPKP header is present. +cert-error-details-key-pinning-label = HTTP Public Key Pinning: { $hasHPKP } +cert-error-details-cert-chain-label = Certificate chain: +open-in-new-window-for-csp-or-xfo-error = Open Site in New Window +# Variables: +# $hostname (string) - Hostname of the website blocked by csp or xfo error. +csp-xfo-blocked-long-desc = To protect your security, { $hostname } will not allow { -brand-short-name } to display the page if another site has embedded it. To see this page, you need to open it in a new window. + +## Messages used for certificate error titles + +connectionFailure-title = Unable to connect +deniedPortAccess-title = This address is restricted +# "Hmm" is a sound made when considering or puzzling over something. +# You don't have to include it in your translation if your language does not have a written word like this. +dnsNotFound-title = Hmm. We’re having trouble finding that site. +dns-not-found-trr-only-title2 = Possible security risk looking up this domain +dns-not-found-native-fallback-title2 = Possible security risk looking up this domain +fileNotFound-title = File not found +fileAccessDenied-title = Access to the file was denied +generic-title = Oops. +captivePortal-title = Log in to network +# "Hmm" is a sound made when considering or puzzling over something. +# You don't have to include it in your translation if your language does not have a written word like this. +malformedURI-title = Hmm. That address doesn’t look right. +netInterrupt-title = The connection was interrupted +notCached-title = Document Expired +netOffline-title = Offline mode +contentEncodingError-title = Content Encoding Error +unsafeContentType-title = Unsafe File Type +netReset-title = The connection was reset +netTimeout-title = The connection has timed out +unknownProtocolFound-title = The address wasn’t understood +proxyConnectFailure-title = The proxy server is refusing connections +proxyResolveFailure-title = Unable to find the proxy server +redirectLoop-title = The page isn’t redirecting properly +unknownSocketType-title = Unexpected response from server +nssFailure2-title = Secure Connection Failed +csp-xfo-error-title = { -brand-short-name } Can’t Open This Page +corruptedContentError-title = Corrupted Content Error +sslv3Used-title = Unable to Connect Securely +inadequateSecurityError-title = Your connection is not secure +blockedByPolicy-title = Blocked Page +clockSkewError-title = Your Computer Clock is Wrong +networkProtocolError-title = Network Protocol Error +nssBadCert-title = Warning: Potential Security Risk Ahead +nssBadCert-sts-title = Did Not Connect: Potential Security Issue +certerror-mitm-title = Software is Preventing { -brand-short-name } From Safely Connecting to This Site diff --git a/l10n-en-CA/toolkit/toolkit/neterror/netError.ftl b/l10n-en-CA/toolkit/toolkit/neterror/netError.ftl new file mode 100644 index 0000000000..8d300f3197 --- /dev/null +++ b/l10n-en-CA/toolkit/toolkit/neterror/netError.ftl @@ -0,0 +1,147 @@ +# This Source Code Form is subject to the terms of the Mozilla Public +# License, v. 2.0. If a copy of the MPL was not distributed with this +# file, You can obtain one at http://mozilla.org/MPL/2.0/. + + +## Error page titles + +neterror-page-title = Problem loading page +certerror-page-title = Warning: Potential Security Risk Ahead +certerror-sts-page-title = Did Not Connect: Potential Security Issue +neterror-blocked-by-policy-page-title = Blocked Page +neterror-captive-portal-page-title = Log in to network +neterror-dns-not-found-title = Server Not Found +neterror-malformed-uri-page-title = Invalid URL + +## Error page actions + +neterror-advanced-button = Advanced… +neterror-copy-to-clipboard-button = Copy text to clipboard +neterror-learn-more-link = Learn more… +neterror-open-portal-login-page-button = Open Network Login Page +neterror-override-exception-button = Accept the Risk and Continue +neterror-pref-reset-button = Restore default settings +neterror-return-to-previous-page-button = Go Back +neterror-return-to-previous-page-recommended-button = Go Back (Recommended) +neterror-try-again-button = Try Again +neterror-add-exception-button = Always continue for this site +neterror-settings-button = Change DNS settings +neterror-view-certificate-link = View Certificate +neterror-trr-continue-this-time = Continue this time +neterror-disable-native-feedback-warning = Always continue + +## + +neterror-pref-reset = It looks like your network security settings might be causing this. Do you want the default settings to be restored? +neterror-error-reporting-automatic = Report errors like this to help { -vendor-short-name } identify and block malicious sites + +## Specific error messages + +neterror-generic-error = { -brand-short-name } can’t load this page for some reason. +neterror-load-error-try-again = The site could be temporarily unavailable or too busy. Try again in a few moments. +neterror-load-error-connection = If you are unable to load any pages, check your computer’s network connection. +neterror-load-error-firewall = If your computer or network is protected by a firewall or proxy, make sure that { -brand-short-name } is permitted to access the web. +neterror-captive-portal = You must log in to this network before you can access the internet. +# Variables: +# $hostAndPath (String) - a suggested site (e.g. "www.example.com") that the user may have meant instead. +neterror-dns-not-found-with-suggestion = Did you mean to go to <a data-l10n-name="website">{ $hostAndPath }</a>? +neterror-dns-not-found-hint-header = <strong>If you entered the right address, you can:</strong> +neterror-dns-not-found-hint-try-again = Try again later +neterror-dns-not-found-hint-check-network = Check your network connection +neterror-dns-not-found-hint-firewall = Check that { -brand-short-name } has permission to access the web (you might be connected but behind a firewall) + +## TRR-only specific messages +## Variables: +## $hostname (String) - Hostname of the website to which the user was trying to connect. +## $trrDomain (String) - Hostname of the DNS over HTTPS server that is currently in use. + +neterror-dns-not-found-trr-only-reason = { -brand-short-name } can’t protect your request for this site’s address through our trusted DNS resolver. Here’s why: +neterror-dns-not-found-trr-third-party-warning2 = You can continue with your default DNS resolver. However, a third-party might be able to see what websites you visit. +neterror-dns-not-found-trr-only-could-not-connect = { -brand-short-name } wasn’t able to connect to { $trrDomain }. +neterror-dns-not-found-trr-only-timeout = The connection to { $trrDomain } took longer than expected. +neterror-dns-not-found-trr-offline = You are not connected to the internet. +neterror-dns-not-found-trr-unknown-host2 = This website wasn’t found by { $trrDomain }. +neterror-dns-not-found-trr-server-problem = There was a problem with { $trrDomain }. +neterror-dns-not-found-bad-trr-url = Invalid URL. +neterror-dns-not-found-trr-unknown-problem = Unexpected problem. + +## Native fallback specific messages +## Variables: +## $trrDomain (String) - Hostname of the DNS over HTTPS server that is currently in use. + +neterror-dns-not-found-native-fallback-reason = { -brand-short-name } can’t protect your request for this site’s address through our trusted DNS resolver. Here’s why: +neterror-dns-not-found-native-fallback-heuristic = DNS over HTTPS has been disabled on your network. +neterror-dns-not-found-native-fallback-not-confirmed2 = { -brand-short-name } wasn’t able to connect to { $trrDomain }. + +## + +neterror-file-not-found-filename = Check the file name for capitalization or other typing errors. +neterror-file-not-found-moved = Check to see if the file was moved, renamed or deleted. +neterror-access-denied = It may have been removed, moved, or file permissions may be preventing access. +neterror-unknown-protocol = You might need to install other software to open this address. +neterror-redirect-loop = This problem can sometimes be caused by disabling or refusing to accept cookies. +neterror-unknown-socket-type-psm-installed = Check to make sure your system has the Personal Security Manager installed. +neterror-unknown-socket-type-server-config = This might be due to a non-standard configuration on the server. +neterror-not-cached-intro = The requested document is not available in { -brand-short-name }’s cache. +neterror-not-cached-sensitive = As a security precaution, { -brand-short-name } does not automatically re-request sensitive documents. +neterror-not-cached-try-again = Click Try Again to re-request the document from the website. +neterror-net-offline = Press “Try Again” to switch to online mode and reload the page. +neterror-proxy-resolve-failure-settings = Check the proxy settings to make sure that they are correct. +neterror-proxy-resolve-failure-connection = Check to make sure your computer has a working network connection. +neterror-proxy-resolve-failure-firewall = If your computer or network is protected by a firewall or proxy, make sure that { -brand-short-name } is permitted to access the web. +neterror-proxy-connect-failure-settings = Check the proxy settings to make sure that they are correct. +neterror-proxy-connect-failure-contact-admin = Contact your network administrator to make sure the proxy server is working. +neterror-content-encoding-error = Please contact the website owners to inform them of this problem. +neterror-unsafe-content-type = Please contact the website owners to inform them of this problem. +neterror-nss-failure-not-verified = The page you are trying to view cannot be shown because the authenticity of the received data could not be verified. +neterror-nss-failure-contact-website = Please contact the website owners to inform them of this problem. +# Variables: +# $hostname (String) - Hostname of the website to which the user was trying to connect. +certerror-intro = { -brand-short-name } detected a potential security threat and did not continue to <b>{ $hostname }</b>. If you visit this site, attackers could try to steal information like your passwords, emails, or credit card details. +# Variables: +# $hostname (String) - Hostname of the website to which the user was trying to connect. +certerror-sts-intro = { -brand-short-name } detected a potential security threat and did not continue to <b>{ $hostname }</b> because this website requires a secure connection. +# Variables: +# $hostname (String) - Hostname of the website to which the user was trying to connect. +certerror-expired-cert-intro = { -brand-short-name } detected an issue and did not continue to <b>{ $hostname }</b>. The website is either misconfigured or your computer clock is set to the wrong time. +# Variables: +# $hostname (String) - Hostname of the website to which the user was trying to connect. +# $mitm (String) - The name of the software intercepting communications between you and the website (or “man in the middle”) +certerror-mitm = <b>{ $hostname }</b> is most likely a safe site, but a secure connection could not be established. This issue is caused by <b>{ $mitm }</b>, which is either software on your computer or your network. +neterror-corrupted-content-intro = The page you are trying to view cannot be shown because an error in the data transmission was detected. +neterror-corrupted-content-contact-website = Please contact the website owners to inform them of this problem. +# Do not translate "SSL_ERROR_UNSUPPORTED_VERSION". +neterror-sslv3-used = Advanced info: SSL_ERROR_UNSUPPORTED_VERSION +# Variables: +# $hostname (String) - Hostname of the website to which the user was trying to connect. +neterror-inadequate-security-intro = <b>{ $hostname }</b> uses security technology that is outdated and vulnerable to attack. An attacker could easily reveal information which you thought to be safe. The website administrator will need to fix the server first before you can visit the site. +# Do not translate "NS_ERROR_NET_INADEQUATE_SECURITY". +neterror-inadequate-security-code = Error code: NS_ERROR_NET_INADEQUATE_SECURITY +# Variables: +# $hostname (String) - Hostname of the website to which the user was trying to connect. +# $now (Date) - The current datetime, to be formatted as a date +neterror-clock-skew-error = Your computer thinks it is { DATETIME($now, dateStyle: "medium") }, which prevents { -brand-short-name } from connecting securely. To visit <b>{ $hostname }</b>, update your computer clock in your system settings to the current date, time, and time zone, and then refresh <b>{ $hostname }</b>. +neterror-network-protocol-error-intro = The page you are trying to view cannot be shown because an error in the network protocol was detected. +neterror-network-protocol-error-contact-website = Please contact the website owners to inform them of this problem. +certerror-expired-cert-second-para = It’s likely the website’s certificate is expired, which prevents { -brand-short-name } from connecting securely. If you visit this site, attackers could try to steal information like your passwords, emails, or credit card details. +certerror-expired-cert-sts-second-para = It’s likely the website’s certificate is expired, which prevents { -brand-short-name } from connecting securely. +certerror-what-can-you-do-about-it-title = What can you do about it? +certerror-unknown-issuer-what-can-you-do-about-it-website = The issue is most likely with the website, and there is nothing you can do to resolve it. +certerror-unknown-issuer-what-can-you-do-about-it-contact-admin = If you are on a corporate network or using antivirus software, you can reach out to the support teams for assistance. You can also notify the website’s administrator about the problem. +# Variables: +# $hostname (String) - Hostname of the website to which the user was trying to connect. +# $now (Date) - The current datetime, to be formatted as a date +certerror-expired-cert-what-can-you-do-about-it-clock = Your computer clock is set to { DATETIME($now, dateStyle: "medium") }. Make sure your computer is set to the correct date, time, and time zone in your system settings, and then refresh <b>{ $hostname }</b>. +certerror-expired-cert-what-can-you-do-about-it-contact-website = If your clock is already set to the right time, the website is likely misconfigured, and there is nothing you can do to resolve the issue. You can notify the website’s administrator about the problem. +certerror-bad-cert-domain-what-can-you-do-about-it = The issue is most likely with the website, and there is nothing you can do to resolve it. You can notify the website’s administrator about the problem. +certerror-mitm-what-can-you-do-about-it-antivirus = If your antivirus software includes a feature that scans encrypted connections (often called “web scanning” or “https scanning”), you can disable that feature. If that doesn’t work, you can remove and reinstall the antivirus software. +certerror-mitm-what-can-you-do-about-it-corporate = If you are on a corporate network, you can contact your IT department. +# Variables: +# $mitm (String) - The name of the software intercepting communications between you and the website (or “man in the middle”) +certerror-mitm-what-can-you-do-about-it-attack = If you are not familiar with <b>{ $mitm }</b>, then this could be an attack and you should not continue to the site. +# Variables: +# $mitm (String) - The name of the software intercepting communications between you and the website (or “man in the middle”) +certerror-mitm-what-can-you-do-about-it-attack-sts = If you are not familiar with <b>{ $mitm }</b>, then this could be an attack, and there is nothing you can do to access the site. +# Variables: +# $hostname (String) - Hostname of the website to which the user was trying to connect. +certerror-what-should-i-do-bad-sts-cert-explanation = <b>{ $hostname }</b> has a security policy called HTTP Strict Transport Security (HSTS), which means that { -brand-short-name } can only connect to it securely. You can’t add an exception to visit this site. diff --git a/l10n-en-CA/toolkit/toolkit/neterror/nsserrors.ftl b/l10n-en-CA/toolkit/toolkit/neterror/nsserrors.ftl new file mode 100644 index 0000000000..2b0cc5d29e --- /dev/null +++ b/l10n-en-CA/toolkit/toolkit/neterror/nsserrors.ftl @@ -0,0 +1,349 @@ +# This Source Code Form is subject to the terms of the Mozilla Public +# License, v. 2.0. If a copy of the MPL was not distributed with this +# file, You can obtain one at http://mozilla.org/MPL/2.0/. + + +# DO NOT ADD THINGS OTHER THAN ERROR MESSAGES HERE. +# This file gets parsed into a JS dictionary of all known error message ids in +# gen_aboutneterror_codes.py . If we end up needing fluent attributes or +# refactoring them in some way, the script will need updating. + +psmerr-ssl-disabled = Can’t connect securely because the SSL protocol has been disabled. +psmerr-ssl2-disabled = Can’t connect securely because the site uses an older, insecure version of the SSL protocol. +# This is a multi-line message. +psmerr-hostreusedissuerandserial = + You have received an invalid certificate. Please contact the server administrator or email correspondent and give them the following information: + + Your certificate contains the same serial number as another certificate issued by the certificate authority. Please get a new certificate containing a unique serial number. + +ssl-error-export-only-server = Unable to communicate securely. Peer does not support high-grade encryption. +ssl-error-us-only-server = Unable to communicate securely. Peer requires high-grade encryption which is not supported. +ssl-error-no-cypher-overlap = Cannot communicate securely with peer: no common encryption algorithm(s). +ssl-error-no-certificate = Unable to find the certificate or key necessary for authentication. +ssl-error-bad-certificate = Unable to communicate securely with peer: peers’s certificate was rejected. +ssl-error-bad-client = The server has encountered bad data from the client. +ssl-error-bad-server = The client has encountered bad data from the server. +ssl-error-unsupported-certificate-type = Unsupported certificate type. +ssl-error-unsupported-version = Peer using unsupported version of security protocol. +ssl-error-wrong-certificate = Client authentication failed: private key in key database does not match public key in certificate database. +ssl-error-bad-cert-domain = Unable to communicate securely with peer: requested domain name does not match the server’s certificate. +ssl-error-post-warning = Unrecognized SSL error code. +ssl-error-ssl2-disabled = Peer only supports SSL version 2, which is locally disabled. +ssl-error-bad-mac-read = SSL received a record with an incorrect Message Authentication Code. +ssl-error-bad-mac-alert = SSL peer reports incorrect Message Authentication Code. +ssl-error-bad-cert-alert = SSL peer cannot verify your certificate. +ssl-error-revoked-cert-alert = SSL peer rejected your certificate as revoked. +ssl-error-expired-cert-alert = SSL peer rejected your certificate as expired. +ssl-error-ssl-disabled = Cannot connect: SSL is disabled. +ssl-error-fortezza-pqg = Cannot connect: SSL peer is in another FORTEZZA domain. +ssl-error-unknown-cipher-suite = An unknown SSL cipher suite has been requested. +ssl-error-no-ciphers-supported = No cipher suites are present and enabled in this program. +ssl-error-bad-block-padding = SSL received a record with bad block padding. +ssl-error-rx-record-too-long = SSL received a record that exceeded the maximum permissible length. +ssl-error-tx-record-too-long = SSL attempted to send a record that exceeded the maximum permissible length. +ssl-error-rx-malformed-hello-request = SSL received a malformed Hello Request handshake message. +ssl-error-rx-malformed-client-hello = SSL received a malformed Client Hello handshake message. +ssl-error-rx-malformed-server-hello = SSL received a malformed Server Hello handshake message. +ssl-error-rx-malformed-certificate = SSL received a malformed Certificate handshake message. +ssl-error-rx-malformed-server-key-exch = SSL received a malformed Server Key Exchange handshake message. +ssl-error-rx-malformed-cert-request = SSL received a malformed Certificate Request handshake message. +ssl-error-rx-malformed-hello-done = SSL received a malformed Server Hello Done handshake message. +ssl-error-rx-malformed-cert-verify = SSL received a malformed Certificate Verify handshake message. +ssl-error-rx-malformed-client-key-exch = SSL received a malformed Client Key Exchange handshake message. +ssl-error-rx-malformed-finished = SSL received a malformed Finished handshake message. +ssl-error-rx-malformed-change-cipher = SSL received a malformed Change Cipher Spec record. +ssl-error-rx-malformed-alert = SSL received a malformed Alert record. +ssl-error-rx-malformed-handshake = SSL received a malformed Handshake record. +ssl-error-rx-malformed-application-data = SSL received a malformed Application Data record. +ssl-error-rx-unexpected-hello-request = SSL received an unexpected Hello Request handshake message. +ssl-error-rx-unexpected-client-hello = SSL received an unexpected Client Hello handshake message. +ssl-error-rx-unexpected-server-hello = SSL received an unexpected Server Hello handshake message. +ssl-error-rx-unexpected-certificate = SSL received an unexpected Certificate handshake message. +ssl-error-rx-unexpected-server-key-exch = SSL received an unexpected Server Key Exchange handshake message. +ssl-error-rx-unexpected-cert-request = SSL received an unexpected Certificate Request handshake message. +ssl-error-rx-unexpected-hello-done = SSL received an unexpected Server Hello Done handshake message. +ssl-error-rx-unexpected-cert-verify = SSL received an unexpected Certificate Verify handshake message. +ssl-error-rx-unexpected-client-key-exch = SSL received an unexpected Client Key Exchange handshake message. +ssl-error-rx-unexpected-finished = SSL received an unexpected Finished handshake message. +ssl-error-rx-unexpected-change-cipher = SSL received an unexpected Change Cipher Spec record. +ssl-error-rx-unexpected-alert = SSL received an unexpected Alert record. +ssl-error-rx-unexpected-handshake = SSL received an unexpected Handshake record. +ssl-error-rx-unexpected-application-data = SSL received an unexpected Application Data record. +ssl-error-rx-unknown-record-type = SSL received a record with an unknown content type. +ssl-error-rx-unknown-handshake = SSL received a handshake message with an unknown message type. +ssl-error-rx-unknown-alert = SSL received an alert record with an unknown alert description. +ssl-error-close-notify-alert = SSL peer has closed this connection. +ssl-error-handshake-unexpected-alert = SSL peer was not expecting a handshake message it received. +ssl-error-decompression-failure-alert = SSL peer was unable to successfully decompress an SSL record it received. +ssl-error-handshake-failure-alert = SSL peer was unable to negotiate an acceptable set of security parameters. +ssl-error-illegal-parameter-alert = SSL peer rejected a handshake message for unacceptable content. +ssl-error-unsupported-cert-alert = SSL peer does not support certificates of the type it received. +ssl-error-certificate-unknown-alert = SSL peer had some unspecified issue with the certificate it received. +ssl-error-generate-random-failure = SSL experienced a failure of its random number generator. +ssl-error-sign-hashes-failure = Unable to digitally sign data required to verify your certificate. +ssl-error-extract-public-key-failure = SSL was unable to extract the public key from the peer’s certificate. +ssl-error-server-key-exchange-failure = Unspecified failure while processing SSL Server Key Exchange handshake. +ssl-error-client-key-exchange-failure = Unspecified failure while processing SSL Client Key Exchange handshake. +ssl-error-encryption-failure = Bulk data encryption algorithm failed in selected cipher suite. +ssl-error-decryption-failure = Bulk data decryption algorithm failed in selected cipher suite. +ssl-error-socket-write-failure = Attempt to write encrypted data to underlying socket failed. +ssl-error-md5-digest-failure = MD5 digest function failed. +ssl-error-sha-digest-failure = SHA-1 digest function failed. +ssl-error-mac-computation-failure = MAC computation failed. +ssl-error-sym-key-context-failure = Failure to create Symmetric Key context. +ssl-error-sym-key-unwrap-failure = Failure to unwrap the Symmetric key in Client Key Exchange message. +ssl-error-pub-key-size-limit-exceeded = SSL Server attempted to use domestic-grade public key with export cipher suite. +ssl-error-iv-param-failure = PKCS11 code failed to translate an IV into a param. +ssl-error-init-cipher-suite-failure = Failed to initialize the selected cipher suite. +ssl-error-session-key-gen-failure = Client failed to generate session keys for SSL session. +ssl-error-no-server-key-for-alg = Server has no key for the attempted key exchange algorithm. +ssl-error-token-insertion-removal = PKCS#11 token was inserted or removed while operation was in progress. +ssl-error-token-slot-not-found = No PKCS#11 token could be found to do a required operation. +ssl-error-no-compression-overlap = Cannot communicate securely with peer: no common compression algorithm(s). +ssl-error-handshake-not-completed = Cannot initiate another SSL handshake until current handshake is complete. +ssl-error-bad-handshake-hash-value = Received incorrect handshakes hash values from peer. +ssl-error-cert-kea-mismatch = The certificate provided cannot be used with the selected key exchange algorithm. +ssl-error-no-trusted-ssl-client-ca = No certificate authority is trusted for SSL client authentication. +ssl-error-session-not-found = Client’s SSL session ID not found in server’s session cache. +ssl-error-decryption-failed-alert = Peer was unable to decrypt an SSL record it received. +ssl-error-record-overflow-alert = Peer received an SSL record that was longer than is permitted. +ssl-error-unknown-ca-alert = Peer does not recognize and trust the CA that issued your certificate. +ssl-error-access-denied-alert = Peer received a valid certificate, but access was denied. +ssl-error-decode-error-alert = Peer could not decode an SSL handshake message. +ssl-error-decrypt-error-alert = Peer reports failure of signature verification or key exchange. +ssl-error-export-restriction-alert = Peer reports negotiation not in compliance with export regulations. +ssl-error-protocol-version-alert = Peer reports incompatible or unsupported protocol version. +ssl-error-insufficient-security-alert = Server requires ciphers more secure than those supported by client. +ssl-error-internal-error-alert = Peer reports it experienced an internal error. +ssl-error-user-canceled-alert = Peer user cancelled handshake. +ssl-error-no-renegotiation-alert = Peer does not permit renegotiation of SSL security parameters. +ssl-error-server-cache-not-configured = SSL server cache not configured and not disabled for this socket. +ssl-error-unsupported-extension-alert = SSL peer does not support requested TLS hello extension. +ssl-error-certificate-unobtainable-alert = SSL peer could not obtain your certificate from the supplied URL. +ssl-error-unrecognized-name-alert = SSL peer has no certificate for the requested DNS name. +ssl-error-bad-cert-status-response-alert = SSL peer was unable to get an OCSP response for its certificate. +ssl-error-bad-cert-hash-value-alert = SSL peer reported bad certificate hash value. +ssl-error-rx-unexpected-new-session-ticket = SSL received an unexpected New Session Ticket handshake message. +ssl-error-rx-malformed-new-session-ticket = SSL received a malformed New Session Ticket handshake message. +ssl-error-decompression-failure = SSL received a compressed record that could not be decompressed. +ssl-error-renegotiation-not-allowed = Renegotiation is not allowed on this SSL socket. +ssl-error-unsafe-negotiation = Peer attempted old style (potentially vulnerable) handshake. +ssl-error-rx-unexpected-uncompressed-record = SSL received an unexpected uncompressed record. +ssl-error-weak-server-ephemeral-dh-key = SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message. +ssl-error-next-protocol-data-invalid = SSL received invalid NPN extension data. +ssl-error-feature-not-supported-for-ssl2 = SSL feature not supported for SSL 2.0 connections. +ssl-error-feature-not-supported-for-servers = SSL feature not supported for servers. +ssl-error-feature-not-supported-for-clients = SSL feature not supported for clients. +ssl-error-invalid-version-range = SSL version range is not valid. +ssl-error-cipher-disallowed-for-version = SSL peer selected a cipher suite disallowed for the selected protocol version. +ssl-error-rx-malformed-hello-verify-request = SSL received a malformed Hello Verify Request handshake message. +ssl-error-rx-unexpected-hello-verify-request = SSL received an unexpected Hello Verify Request handshake message. +ssl-error-feature-not-supported-for-version = SSL feature not supported for the protocol version. +ssl-error-rx-unexpected-cert-status = SSL received an unexpected Certificate Status handshake message. +ssl-error-unsupported-hash-algorithm = Unsupported hash algorithm used by TLS peer. +ssl-error-digest-failure = Digest function failed. +ssl-error-incorrect-signature-algorithm = Incorrect signature algorithm specified in a digitally-signed element. +ssl-error-next-protocol-no-callback = The next protocol negotiation extension was enabled, but the callback was cleared prior to being needed. +ssl-error-next-protocol-no-protocol = The server supports no protocols that the client advertises in the ALPN extension. +ssl-error-inappropriate-fallback-alert = The server rejected the handshake because the client downgraded to a lower TLS version than the server supports. +ssl-error-weak-server-cert-key = The server certificate included a public key that was too weak. +ssl-error-rx-short-dtls-read = Not enough room in buffer for DTLS record. +ssl-error-no-supported-signature-algorithm = No supported TLS signature algorithm was configured. +ssl-error-unsupported-signature-algorithm = The peer used an unsupported combination of signature and hash algorithm. +ssl-error-missing-extended-master-secret = The peer tried to resume without a correct extended_master_secret extension. +ssl-error-unexpected-extended-master-secret = The peer tried to resume with an unexpected extended_master_secret extension. + +sec-error-io = An I/O error occurred during security authorization. +sec-error-library-failure = security library failure. +sec-error-bad-data = security library: received bad data. +sec-error-output-len = security library: output length error. +sec-error-input-len = security library has experienced an input length error. +sec-error-invalid-args = security library: invalid arguments. +sec-error-invalid-algorithm = security library: invalid algorithm. +sec-error-invalid-ava = security library: invalid AVA. +sec-error-invalid-time = Improperly formatted time string. +sec-error-bad-der = security library: improperly formatted DER-encoded message. +sec-error-bad-signature = Peer’s certificate has an invalid signature. +sec-error-expired-certificate = Peer’s Certificate has expired. +sec-error-revoked-certificate = Peer’s Certificate has been revoked. +sec-error-unknown-issuer = Peer’s Certificate issuer is not recognized. +sec-error-bad-key = Peer’s public key is invalid. +sec-error-bad-password = The security password entered is incorrect. +sec-error-retry-password = New password entered incorrectly. Please try again. +sec-error-no-nodelock = security library: no nodelock. +sec-error-bad-database = security library: bad database. +sec-error-no-memory = security library: memory allocation failure. +sec-error-untrusted-issuer = Peer’s certificate issuer has been marked as not trusted by the user. +sec-error-untrusted-cert = Peer’s certificate has been marked as not trusted by the user. +sec-error-duplicate-cert = Certificate already exists in your database. +sec-error-duplicate-cert-name = Downloaded certificate’s name duplicates one already in your database. +sec-error-adding-cert = Error adding certificate to database. +sec-error-filing-key = Error refiling the key for this certificate. +sec-error-no-key = The private key for this certificate cannot be found in key database +sec-error-cert-valid = This certificate is valid. +sec-error-cert-not-valid = This certificate is not valid. +sec-error-cert-no-response = Cert Library: No Response +sec-error-expired-issuer-certificate = The certificate issuer’s certificate has expired. Check your system date and time. +sec-error-crl-expired = The CRL for the certificate’s issuer has expired. Update it or check your system date and time. +sec-error-crl-bad-signature = The CRL for the certificate’s issuer has an invalid signature. +sec-error-crl-invalid = New CRL has an invalid format. +sec-error-extension-value-invalid = Certificate extension value is invalid. +sec-error-extension-not-found = Certificate extension not found. +sec-error-ca-cert-invalid = Issuer certificate is invalid. +sec-error-path-len-constraint-invalid = Certificate path length constraint is invalid. +sec-error-cert-usages-invalid = Certificate usages field is invalid. +sec-internal-only = **Internal ONLY module** +sec-error-invalid-key = The key does not support the requested operation. +sec-error-unknown-critical-extension = Certificate contains unknown critical extension. +sec-error-old-crl = New CRL is not later than the current one. +sec-error-no-email-cert = Not encrypted or signed: you do not yet have an email certificate. +sec-error-no-recipient-certs-query = Not encrypted: you do not have certificates for each of the recipients. +sec-error-not-a-recipient = Cannot decrypt: you are not a recipient, or matching certificate and private key not found. +sec-error-pkcs7-keyalg-mismatch = Cannot decrypt: key encryption algorithm does not match your certificate. +sec-error-pkcs7-bad-signature = Signature verification failed: no signer found, too many signers found, or improper or corrupted data. +sec-error-unsupported-keyalg = Unsupported or unknown key algorithm. +sec-error-decryption-disallowed = Cannot decrypt: encrypted using a disallowed algorithm or key size. +sec-error-no-krl = No KRL for this site’s certificate has been found. +sec-error-krl-expired = The KRL for this site’s certificate has expired. +sec-error-krl-bad-signature = The KRL for this site’s certificate has an invalid signature. +sec-error-revoked-key = The key for this site’s certificate has been revoked. +sec-error-krl-invalid = New KRL has an invalid format. +sec-error-need-random = security library: need random data. +sec-error-no-module = security library: no security module can perform the requested operation. +sec-error-no-token = The security card or token does not exist, needs to be initialized, or has been removed. +sec-error-read-only = security library: read-only database. +sec-error-no-slot-selected = No slot or token was selected. +sec-error-cert-nickname-collision = A certificate with the same nickname already exists. +sec-error-key-nickname-collision = A key with the same nickname already exists. +sec-error-safe-not-created = error while creating safe object +sec-error-baggage-not-created = error while creating baggage object +sec-error-bad-export-algorithm = Required algorithm is not allowed. +sec-error-exporting-certificates = Error attempting to export certificates. +sec-error-importing-certificates = Error attempting to import certificates. +sec-error-pkcs12-decoding-pfx = Unable to import. Decoding error. File not valid. +sec-error-pkcs12-invalid-mac = Unable to import. Invalid MAC. Incorrect password or corrupt file. +sec-error-pkcs12-unsupported-mac-algorithm = Unable to import. MAC algorithm not supported. +sec-error-pkcs12-unsupported-transport-mode = Unable to import. Only password integrity and privacy modes supported. +sec-error-pkcs12-corrupt-pfx-structure = Unable to import. File structure is corrupt. +sec-error-pkcs12-unsupported-pbe-algorithm = Unable to import. Encryption algorithm not supported. +sec-error-pkcs12-unsupported-version = Unable to import. File version not supported. +sec-error-pkcs12-privacy-password-incorrect = Unable to import. Incorrect privacy password. +sec-error-pkcs12-cert-collision = Unable to import. Same nickname already exists in database. +sec-error-user-cancelled = The user pressed cancel. +sec-error-pkcs12-duplicate-data = Not imported, already in database. +sec-error-message-send-aborted = Message not sent. +sec-error-inadequate-key-usage = Certificate key usage inadequate for attempted operation. +sec-error-inadequate-cert-type = Certificate type not approved for application. +sec-error-cert-addr-mismatch = Address in signing certificate does not match address in message headers. +sec-error-pkcs12-unable-to-import-key = Unable to import. Error attempting to import private key. +sec-error-pkcs12-importing-cert-chain = Unable to import. Error attempting to import certificate chain. +sec-error-pkcs12-unable-to-locate-object-by-name = Unable to export. Unable to locate certificate or key by nickname. +sec-error-pkcs12-unable-to-export-key = Unable to export. Private Key could not be located and exported. +sec-error-pkcs12-unable-to-write = Unable to export. Unable to write the export file. +sec-error-pkcs12-unable-to-read = Unable to import. Unable to read the import file. +sec-error-pkcs12-key-database-not-initialized = Unable to export. Key database corrupt or deleted. +sec-error-keygen-fail = Unable to generate public/private key pair. +sec-error-invalid-password = Password entered is invalid. Please pick a different one. +sec-error-retry-old-password = Old password entered incorrectly. Please try again. +sec-error-bad-nickname = Certificate nickname already in use. +sec-error-not-fortezza-issuer = Peer FORTEZZA chain has a non-FORTEZZA Certificate. +sec-error-cannot-move-sensitive-key = A sensitive key cannot be moved to the slot where it is needed. +sec-error-js-invalid-module-name = Invalid module name. +sec-error-js-invalid-dll = Invalid module path/filename +sec-error-js-add-mod-failure = Unable to add module +sec-error-js-del-mod-failure = Unable to delete module +sec-error-old-krl = New KRL is not later than the current one. +sec-error-ckl-conflict = New CKL has different issuer than current CKL. Delete current CKL. +sec-error-cert-not-in-name-space = The Certifying Authority for this certificate is not permitted to issue a certificate with this name. +sec-error-krl-not-yet-valid = The key revocation list for this certificate is not yet valid. +sec-error-crl-not-yet-valid = The certificate revocation list for this certificate is not yet valid. +sec-error-unknown-cert = The requested certificate could not be found. +sec-error-unknown-signer = The signer’s certificate could not be found. +sec-error-cert-bad-access-location = The location for the certificate status server has invalid format. +sec-error-ocsp-unknown-response-type = The OCSP response cannot be fully decoded; it is of an unknown type. +sec-error-ocsp-bad-http-response = The OCSP server returned unexpected/invalid HTTP data. +sec-error-ocsp-malformed-request = The OCSP server found the request to be corrupted or improperly formed. +sec-error-ocsp-server-error = The OCSP server experienced an internal error. +sec-error-ocsp-try-server-later = The OCSP server suggests trying again later. +sec-error-ocsp-request-needs-sig = The OCSP server requires a signature on this request. +sec-error-ocsp-unauthorized-request = The OCSP server has refused this request as unauthorized. +sec-error-ocsp-unknown-response-status = The OCSP server returned an unrecognizable status. +sec-error-ocsp-unknown-cert = The OCSP server has no status for the certificate. +sec-error-ocsp-not-enabled = You must enable OCSP before performing this operation. +sec-error-ocsp-no-default-responder = You must set the OCSP default responder before performing this operation. +sec-error-ocsp-malformed-response = The response from the OCSP server was corrupted or improperly formed. +sec-error-ocsp-unauthorized-response = The signer of the OCSP response is not authorized to give status for this certificate. +sec-error-ocsp-future-response = The OCSP response is not yet valid (contains a date in the future). +sec-error-ocsp-old-response = The OCSP response contains out-of-date information. +sec-error-digest-not-found = The CMS or PKCS #7 Digest was not found in signed message. +sec-error-unsupported-message-type = The CMS or PKCS #7 Message type is unsupported. +sec-error-module-stuck = PKCS #11 module could not be removed because it is still in use. +sec-error-bad-template = Could not decode ASN.1 data. Specified template was invalid. +sec-error-crl-not-found = No matching CRL was found. +sec-error-reused-issuer-and-serial = You are attempting to import a cert with the same issuer/serial as an existing cert, but that is not the same cert. +sec-error-busy = NSS could not shutdown. Objects are still in use. +sec-error-extra-input = DER-encoded message contained extra unused data. +sec-error-unsupported-elliptic-curve = Unsupported elliptic curve. +sec-error-unsupported-ec-point-form = Unsupported elliptic curve point form. +sec-error-unrecognized-oid = Unrecognized Object Identifier. +sec-error-ocsp-invalid-signing-cert = Invalid OCSP signing certificate in OCSP response. +sec-error-revoked-certificate-crl = Certificate is revoked in issuer’s certificate revocation list. +sec-error-revoked-certificate-ocsp = Issuer’s OCSP responder reports certificate is revoked. +sec-error-crl-invalid-version = Issuer’s Certificate Revocation List has an unknown version number. +sec-error-crl-v1-critical-extension = Issuer’s V1 Certificate Revocation List has a critical extension. +sec-error-crl-unknown-critical-extension = Issuer’s V2 Certificate Revocation List has an unknown critical extension. +sec-error-unknown-object-type = Unknown object type specified. +sec-error-incompatible-pkcs11 = PKCS #11 driver violates the spec in an incompatible way. +sec-error-no-event = No new slot event is available at this time. +sec-error-crl-already-exists = CRL already exists. +sec-error-not-initialized = NSS is not initialized. +sec-error-token-not-logged-in = The operation failed because the PKCS#11 token is not logged in. +sec-error-ocsp-responder-cert-invalid = Configured OCSP responder’s certificate is invalid. +sec-error-ocsp-bad-signature = OCSP response has an invalid signature. +sec-error-out-of-search-limits = Certificate validation search is out of search limits +sec-error-invalid-policy-mapping = Policy mapping contains anypolicy +sec-error-policy-validation-failed = Certificate chain fails policy validation +sec-error-unknown-aia-location-type = Unknown location type in cert AIA extension +sec-error-bad-http-response = Server returned bad HTTP response +sec-error-bad-ldap-response = Server returned bad LDAP response +sec-error-failed-to-encode-data = Failed to encode data with ASN1 encoder +sec-error-bad-info-access-location = Bad information access location in certificate extension +sec-error-libpkix-internal = Libpkix internal error occurred during certificate validation. +sec-error-pkcs11-general-error = A PKCS #11 module returned CKR_GENERAL_ERROR, indicating that an unrecoverable error has occurred. +sec-error-pkcs11-function-failed = A PKCS #11 module returned CKR_FUNCTION_FAILED, indicating that the requested function could not be performed. Trying the same operation again might succeed. +sec-error-pkcs11-device-error = A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot. +sec-error-bad-info-access-method = Unknown information access method in certificate extension. +sec-error-crl-import-failed = Error attempting to import a CRL. +sec-error-expired-password = The password expired. +sec-error-locked-password = The password is locked. +sec-error-unknown-pkcs11-error = Unknown PKCS #11 error. +sec-error-bad-crl-dp-url = Invalid or unsupported URL in CRL distribution point name. +sec-error-cert-signature-algorithm-disabled = The certificate was signed using a signature algorithm that is disabled because it is not secure. + +mozilla-pkix-error-key-pinning-failure = The server uses key pinning (HPKP) but no trusted certificate chain could be constructed that matches the pinset. Key pinning violations cannot be overridden. +mozilla-pkix-error-ca-cert-used-as-end-entity = The server uses a certificate with a basic constraints extension identifying it as a certificate authority. For a properly-issued certificate, this should not be the case. +mozilla-pkix-error-inadequate-key-size = The server presented a certificate with a key size that is too small to establish a secure connection. +mozilla-pkix-error-v1-cert-used-as-ca = An X.509 version 1 certificate that is not a trust anchor was used to issue the server’s certificate. X.509 version 1 certificates are deprecated and should not be used to sign other certificates. +mozilla-pkix-error-not-yet-valid-certificate = The server presented a certificate that is not yet valid. +mozilla-pkix-error-not-yet-valid-issuer-certificate = A certificate that is not yet valid was used to issue the server’s certificate. +mozilla-pkix-error-signature-algorithm-mismatch = The signature algorithm in the signature field of the certificate does not match the algorithm in its signatureAlgorithm field. +mozilla-pkix-error-ocsp-response-for-cert-missing = The OCSP response does not include a status for the certificate being verified. +mozilla-pkix-error-validity-too-long = The server presented a certificate that is valid for too long. +mozilla-pkix-error-required-tls-feature-missing = A required TLS feature is missing. +mozilla-pkix-error-invalid-integer-encoding = The server presented a certificate that contains an invalid encoding of an integer. Common causes include negative serial numbers, negative RSA moduli, and encodings that are longer than necessary. +mozilla-pkix-error-empty-issuer-name = The server presented a certificate with an empty issuer distinguished name. +mozilla-pkix-error-additional-policy-constraint-failed = An additional policy constraint failed when validating this certificate. +mozilla-pkix-error-self-signed-cert = The certificate is not trusted because it is self-signed. + +xp-java-remove-principal-error = Couldn’t remove the principal +xp-java-delete-privilege-error = Couldn’t delete the privilege +xp-java-cert-not-exists-error = This principal doesn’t have a certificate + +xp-sec-fortezza-bad-card = Fortezza card has not been properly initialized. Please remove it and return it to your issuer. +xp-sec-fortezza-no-card = No Fortezza cards Found +xp-sec-fortezza-none-selected = No Fortezza card selected +xp-sec-fortezza-more-info = Please select a personality to get more info on +xp-sec-fortezza-person-not-found = Personality not found +xp-sec-fortezza-no-more-info = No more information on that personality +xp-sec-fortezza-bad-pin = Invalid Pin +xp-sec-fortezza-person-error = Couldn’t initialize Fortezza personalities. |