summaryrefslogtreecommitdiffstats
path: root/wiki/src/news/signing_key_transition.fr.po
diff options
context:
space:
mode:
authoramnesia <webmaster@amnesia.boum.org>2015-03-16 15:52:41 +0100
committeramnesia <webmaster@amnesia.boum.org>2015-03-16 15:52:41 +0100
commiteee497ec6c1eb6f7b36dbc83ca4f6870ceaf4165 (patch)
tree37252b42d7ef4676987b60b745bf93d878cc2571 /wiki/src/news/signing_key_transition.fr.po
parent094a53b74004d3448d7bc3a8e96fab7d602895bd (diff)
updated PO files
Diffstat (limited to 'wiki/src/news/signing_key_transition.fr.po')
-rw-r--r--wiki/src/news/signing_key_transition.fr.po232
1 files changed, 232 insertions, 0 deletions
diff --git a/wiki/src/news/signing_key_transition.fr.po b/wiki/src/news/signing_key_transition.fr.po
new file mode 100644
index 0000000..6dfe933
--- /dev/null
+++ b/wiki/src/news/signing_key_transition.fr.po
@@ -0,0 +1,232 @@
+# SOME DESCRIPTIVE TITLE
+# Copyright (C) YEAR Free Software Foundation, Inc.
+# This file is distributed under the same license as the PACKAGE package.
+# FIRST AUTHOR <EMAIL@ADDRESS>, YEAR.
+#
+#, fuzzy
+msgid ""
+msgstr ""
+"Project-Id-Version: PACKAGE VERSION\n"
+"POT-Creation-Date: 2015-03-16 15:52+0100\n"
+"PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
+"Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
+"Language-Team: LANGUAGE <LL@li.org>\n"
+"Language: \n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: 8bit\n"
+
+#. type: Plain text
+#, no-wrap
+msgid "[[!meta date=\"Mon Mar 16 12:34:56 2015\"]]\n"
+msgstr ""
+
+#. type: Plain text
+#, no-wrap
+msgid "[[!meta title=\"Transition to a new OpenPGP signing key\"]]\n"
+msgstr ""
+
+#. type: Plain text
+#, no-wrap
+msgid "[[!tag announce]]\n"
+msgstr ""
+
+#. type: Plain text
+msgid "Tails is transitioning to a new OpenPGP signing key."
+msgstr ""
+
+#. type: Plain text
+msgid "The signing key is the key that we use to:"
+msgstr ""
+
+#. type: Bullet: ' - '
+msgid "Sign our official ISO images."
+msgstr ""
+
+#. type: Bullet: ' - '
+msgid ""
+"Certify the other [[OpenPGP keys|doc/about/openpgp_keys]] used by the "
+"project."
+msgstr ""
+
+#. type: Plain text
+#, no-wrap
+msgid "<div class=\"note\">\n"
+msgstr ""
+
+#. type: Plain text
+#, no-wrap
+msgid ""
+"<p>The previous signing key is safe and, to the best of our knowledge, it\n"
+"has not been compromised.</p>\n"
+msgstr ""
+
+#. type: Plain text
+#, no-wrap
+msgid ""
+"<p>We are doing this change to improve our security practices when\n"
+"manipulating such a critical piece of data.</p>\n"
+msgstr ""
+
+#. type: Plain text
+#:
+#, no-wrap
+msgid "</div>\n"
+msgstr ""
+
+#. type: Plain text
+#, no-wrap
+msgid "<div class=\"tip\">\n"
+msgstr ""
+
+#. type: Plain text
+#, no-wrap
+msgid ""
+"<ul>\n"
+" <li>The old key can still be used to verify Tails 1.3 ISO images.</li>\n"
+" <li>The new key will be used to sign ISO images starting from Tails "
+"1.3.1.</li>\n"
+"</ul>\n"
+msgstr ""
+
+#. type: Title =
+#, no-wrap
+msgid "Import and verify the new signing key\n"
+msgstr ""
+
+#. type: Plain text
+msgid "Click on the following button to download and import the new signing key:"
+msgstr ""
+
+#. type: Plain text
+#, no-wrap
+msgid ""
+"<a class=\"download-key\" "
+"href=\"https://tails.boum.org/tails-signing-new.key\">new Tails signing "
+"key</a>\n"
+msgstr ""
+
+#. type: Plain text
+msgid ""
+"The new signing key is itself signed by the old signing key. So you can "
+"transitively trust this new key if you had trusted the old signing key."
+msgstr ""
+
+#. type: Plain text
+msgid ""
+"To verify that the new key is correctly signed by the old key, you can "
+"execute the following command:"
+msgstr ""
+
+#. type: Plain text
+#, no-wrap
+msgid " gpg --check-sigs A490D0F4D311A4153E2BB7CADBB802B258ACD84F\n"
+msgstr ""
+
+#. type: Plain text
+msgid "The output should include a signature of the new key by the old key such as:"
+msgstr ""
+
+#. type: Plain text
+#, no-wrap
+msgid ""
+" sig! 0x1202821CBE2CD9C1 2015-01-19 Tails developers (signing "
+"key) <tails@boum.org>\n"
+msgstr ""
+
+#. type: Plain text
+msgid ""
+"In this output, the status of the verification is indicated by a flag "
+"directly following the \"`sig`\" tag. A \"`!`\" indicates that the signature "
+"has been successfully verified."
+msgstr ""
+
+#. type: Title =
+#, no-wrap
+msgid "Security policy for the new signing key\n"
+msgstr ""
+
+#. type: Plain text
+msgid "Here is the full description of the new signing key:"
+msgstr ""
+
+#. type: Plain text
+#, no-wrap
+msgid ""
+"<pre>\n"
+" pub 4096R/0xDBB802B258ACD84F 2015-01-18 [expires: 2016-01-11]\n"
+" Key fingerprint = A490 D0F4 D311 A415 3E2B B7CA DBB8 02B2 58AC "
+"D84F\n"
+" uid [ unknown] Tails developers (offline long-term "
+"identity key) <tails@boum.org>\n"
+" sub 4096R/0x98FEC6BC752A3DB6 2015-01-18 [expires: 2016-01-11]\n"
+" sub 4096R/0x3C83DCB52F699C56 2015-01-18 [expires: 2016-01-11]\n"
+"</pre>\n"
+msgstr ""
+
+#. type: Plain text
+msgid "You can see that it has:"
+msgstr ""
+
+#. type: Bullet: ' - '
+msgid ""
+"A primary key (marked as `pub`) with ID `0xDBB802B258ACD84F`. This primary "
+"key:"
+msgstr ""
+
+#. type: Bullet: ' - '
+msgid ""
+"Is not owned in a usable format by any single individual. It is split "
+"cryptographically using "
+"[gfshare](http://www.digital-scurf.org/software/libgfshare)."
+msgstr ""
+
+#. type: Bullet: ' - '
+msgid "Is only used offline, in an air-gapped Tails."
+msgstr ""
+
+#. type: Bullet: ' - '
+msgid ""
+"Expires in less than one year. We will extent its validity as many times as "
+"we find reasonable."
+msgstr ""
+
+#. type: Bullet: ' - '
+msgid ""
+"Two subkeys (marked as `sub`) with IDs `0x98FEC6BC752A3DB6` and "
+"`0x3C83DCB52F699C56` which are stored on OpenPGP smartcards and owned by our "
+"release managers. Smartcards ensure that the cryptographic operations are "
+"done on the smartcard itself and that the secret cryptographic material is "
+"not directly available to the operating system using it."
+msgstr ""
+
+#. type: Title =
+#, no-wrap
+msgid "Web-of-Trust with the Debian keyring\n"
+msgstr ""
+
+#. type: Plain text
+msgid ""
+"This new signing key has already been signed by various Debian developers, "
+"namely:"
+msgstr ""
+
+#. type: Bullet: ' - '
+msgid "gregor herrmann <gregoa@debian.org>, with key `0xBB3A68018649AA06`"
+msgstr ""
+
+#. type: Bullet: ' - '
+msgid "Holger Levsen <holger@debian.org>, with key `0x091AB856069AAA1C`"
+msgstr ""
+
+#. type: Bullet: ' - '
+msgid "Stefano Zacchiroli <zack@debian.org>, with key `0x9C31503C6D866396`"
+msgstr ""
+
+#. type: Plain text
+msgid ""
+"So you can use the technique described in our documentation to further "
+"[[verify the Tails signing key against the Debian "
+"keyring|doc/get/trusting_tails_signing_key#debian]] using any of those four "
+"keys."
+msgstr ""