File: 11_network-services.po

package info (click to toggle)
debian-handbook 10.20200619
links: PTS, VCS
area: main
in suites: bullseye
size: 135,632 kB
sloc: xml: 29,579; sh: 227; makefile: 62; perl: 54
file content (5209 lines) | stat: -rw-r--r-- 387,039 bytes
#
# AUTHOR <EMAIL@ADDRESS>, YEAR.
#
msgid ""
msgstr ""
"Project-Id-Version: 0\n"
"POT-Creation-Date: 2020-05-17 17:54+0200\n"
"PO-Revision-Date: 2018-10-20 03:49+0000\n"
"Last-Translator: Andika Triwidada <andika@gmail.com>\n"
"Language-Team: Indonesian <https://hosted.weblate.org/projects/debian-handbook/11_network-services/id/>\n"
"Language: id-ID\n"
"MIME-Version: 1.0\n"
"Content-Type: application/x-publican; charset=UTF-8\n"
"Content-Transfer-Encoding: 8bit\n"
"Plural-Forms: nplurals=1; plural=0;\n"
"X-Generator: Weblate 3.2.1\n"

msgid "Postfix"
msgstr "Postfix"

msgid "Apache"
msgstr "Apache"

msgid "NFS"
msgstr "NFS"

msgid "Samba"
msgstr "Samba"

msgid "Squid"
msgstr "Squid"

msgid "OpenLDAP"
msgstr "OpenLDAP"

msgid "SIP"
msgstr "SIP"

msgid "SSL"
msgstr ""

#, fuzzy
#| msgid "OpenLDAP"
msgid "OpenDKIM"
msgstr "OpenLDAP"

#, fuzzy
#| msgid "SIP"
msgid "SPF"
msgstr "SIP"

msgid "Network Services: Postfix, Apache, NFS, Samba, Squid, LDAP, SIP, XMPP, TURN"
msgstr "Layanan Jaringan: Postfix, Apache, NFS, Samba, Squid, LDAP, SIP, XMPP, TURN"

#, fuzzy
#| msgid "Network services are the programs that users interact with directly in their daily work. They are the tip of the information system iceberg, and this chapter focuses on them; the hidden parts they rely on are the infrastructure we already described."
msgid "Network services are the programs that users interact with directly in their daily work. They are the tip of the information system iceberg, and this chapter focuses on them; the hidden parts they rely on are the infrastructure we already described. They usually require the encryption technology described in <xref linkend=\"sect.x509-cert\" />."
msgstr "Layanan jaringan adalah program-program yang berinteraksi secara langsung dengan para pengguna dalam pekerjaan mereka sehari-hari. Mereka adalah puncak gunung es sistem informasi, dan bab ini akan memfokuskan pada mereka; bagian tak terlihat tempat mereka bertumpu adalah infrastruktur yang sudah kita terangkan sebelumnya."

msgid "Mail Server"
msgstr "Server Mail"

msgid "The Falcot Corp administrators selected Postfix for the electronic mail server, due to its reliability and its ease of configuration. Indeed, its design enforces that each task is implemented in a process with the minimum set of required permissions, which is a great mitigation measure against security problems."
msgstr "Administrator Falcot Corp memilih Postfix untuk server surel elektroniknya, karena keandalan dan kemudahan konfigurasinya. Memang, desainnya memberlakukan bahwa setiap tugas diimplementasikan dalam sebuah proses dengan seperangkat izin minimum yang dibutuhkan, yang merupakan langkah mitigasi yang besar terhadap masalah keamanan."

msgid "<primary>email</primary><secondary>server</secondary>"
msgstr "<primary>surel</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>server</secondary>"
msgid "<primary>email</primary><secondary>Postfix</secondary>"
msgstr "<primary>surel</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary>server</primary><secondary>file</secondary>"
msgid "<primary>server</primary><secondary>email</secondary>"
msgstr "<primary>server</primary><secondary>berkas</secondary>"

#, fuzzy
#| msgid "<primary>server</primary><secondary>file</secondary>"
msgid "<primary>server</primary><secondary>E-Mail</secondary>"
msgstr "<primary>server</primary><secondary>berkas</secondary>"

msgid "<primary>mail server</primary>"
msgstr "<primary>server surel</primary>"

msgid "<primary>SMTP</primary>"
msgstr "<primary>SMTP</primary>"

msgid "<primary>Postfix</primary>"
msgstr "<primary>Postfix</primary>"

#, fuzzy
#| msgid "<primary><emphasis role=\"pkg\">nginx</emphasis></primary>"
msgid "<primary><emphasis role=\"pkg\">postfix</emphasis></primary>"
msgstr "<primary><emphasis role=\"pkg\">nginx</emphasis></primary>"

msgid "<emphasis>ALTERNATIVE</emphasis> The Exim4 server"
msgstr "<emphasis>ALTERNATIF</emphasis> Server Exim4"

msgid "<primary>Exim</primary>"
msgstr "<primary>Exim</primary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>server</secondary>"
msgid "<primary>email</primary><secondary>Exim</secondary>"
msgstr "<primary>surel</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary><emphasis role=\"pkg\">nginx</emphasis></primary>"
msgid "<primary><emphasis role=\"pkg\">exim4</emphasis></primary>"
msgstr "<primary><emphasis role=\"pkg\">nginx</emphasis></primary>"

msgid "Debian uses Exim4 as the default email server (which is why the initial installation includes Exim4). The configuration is provided by a separate package, <emphasis role=\"pkg\">exim4-config</emphasis>, and automatically customized based on the answers to a set of Debconf questions very similar to the questions asked by the <emphasis role=\"pkg\">postfix</emphasis> package."
msgstr "Debian menggunakan Exim4 sebagai peladen posel bawaan (instalasi awal menyertakan Exim4). Konfigurasi disediakan oleh paket yang terpisah, <emphasis role=\"pkg\">exim4-config</emphasis>, dan diatur secara otomatis berdasarkan jawaban dari pertanyaan Debconf yang mirip dengan pertanyaan yang diajukan oleh paket <emphasis role=\"pkg\">postfix</emphasis>."

msgid "The configuration can be either in one single file (<filename>/etc/exim4/exim4.conf.template</filename>) or split across a number of configuration snippets stored under <filename>/etc/exim4/conf.d/</filename>. In both cases, the files are used by <command>update-exim4.conf</command> as templates to generate <filename>/var/lib/exim4/config.autogenerated</filename>. The latter is the file used by Exim4. Thanks to this mechanism, values obtained through Exim's debconf configuration — which are stored in <filename>/etc/exim4/update-exim4.conf.conf</filename> — can be injected in Exim's configuration file, even when the administrator or another package has altered the default Exim configuration."
msgstr "Konfigurasi dapat berupa berkas tunggal (<filename>/etc/exim4/exim4.conf.template</filename>) atau terpecah dalam beberapa potongan konfigurasi tersimpan di bawah <filename>/etc/exim4/conf.d/</filename>. Keduanya, berkas tersebut digunakan olehperintah <command>update-exim4.conf</command> sebagai palet untuk menghasilkan <filename>/var/lib/exim4/config.autogenerated</filename>. Yang terakhir adalah berkas yang digunakan oleh Exim4. Berkat mekanisme ini, nilai yang dihasilkan melalui konfigurasi debconf Exim --yang tersimpan dalam <filename>/etc/exim4/update-exim4.conf.conf</filename>-- dapat disuntikkan ke dalam berkas konfigurasi Exim, bahkan ketika administrator atau paket lain telah mengubah konfigurasi bawaan Exim."

#, fuzzy
#| msgid "The Exim4 configuration file syntax has its peculiarities and its learning curve; however, once these peculiarities are understood, Exim4 is a very complete and powerful email server, as evidenced by the tens of pages of documentation. <ulink type=\"block\" url=\"http://www.exim.org/docs.html\" />"
msgid "The Exim4 configuration file syntax has its peculiarities and its learning curve; however, once these peculiarities are understood, Exim4 is a very complete and powerful email server, as evidenced by the tens of pages of documentation. <ulink type=\"block\" url=\"https://www.exim.org/docs.html\" />"
msgstr "Sintaks berkas konfigurasi Exim4 memiliki kekhasan dan kurva belajarnya; namun, begitu keanehan ini dipahami, Exim4 merupakan peladen surel yang sangat lengkap dan hebat, yang dibuktikan dengan puluhan halaman dokumentasi. <ulink type=\"block\" url=\"http://www.exim.org/docs.html\" />"

msgid "Installing Postfix"
msgstr "Instalasi Postfix"

#, fuzzy
#| msgid "<primary>domain</primary><secondary>virtual</secondary>"
msgid "<primary>Postfix</primary><secondary>installation</secondary>"
msgstr "<primary>domain</primary><secondary>virtual</secondary>"

#, fuzzy
#| msgid "The <emphasis role=\"pkg\">postfix</emphasis> package includes the main SMTP daemon. Other packages (such as <emphasis role=\"pkg\">postfix-ldap</emphasis> and <emphasis role=\"pkg\">postfix-pgsql</emphasis>) add extra functionality to Postfix, including access to mapping databases. You should only install them if you know that you need them."
msgid "The <emphasis role=\"pkg\">postfix</emphasis> package includes the main <acronym>SMTP</acronym> daemon. Other packages (such as <emphasis role=\"pkg\">postfix-ldap</emphasis> and <emphasis role=\"pkg\">postfix-pgsql</emphasis>) add extra functionality to Postfix, including access to mapping databases. You should only install them if you know that you need them."
msgstr "Paket <emphasis role=\"pkg\">postfix</emphasis> menyertakan daemon SMTP utama. Paket lain (seperti <emphasis role=\"pkg\">postfix-ldap</emphasis> dan <emphasis role=\"pkg\">postfix-pgsql</emphasis>) menambahkan fungsionalitas tambahakan ke Postfix, termasuk mengakses basisdata terpetakan. Anda hanya perlu menginstallnya jika Anda tahu Anda memerlukannya."

msgid "<emphasis>BACK TO BASICS</emphasis> SMTP"
msgstr "<emphasis>KEMBALI KE DASAR</emphasis> SMTP"

msgid "<primary>Simple Mail Transfer Protocol</primary>"
msgstr "<primary>Simple Mail Transfer Protocol</primary>"

msgid "<primary>server</primary><secondary>SMTP</secondary>"
msgstr "<primary>peladen</primary><secondary>SMTP</secondary>"

#, fuzzy
#| msgid "SMTP (<emphasis>Simple Mail Transfer Protocol</emphasis>) is the protocol used by mail servers to exchange and route emails."
msgid "<acronym>SMTP</acronym> (<emphasis>Simple Mail Transfer Protocol</emphasis>, RFC 5321) is the protocol used by mail servers to exchange and route emails."
msgstr "SMTP (<emphasis>Simple Mail Transfer Protocol</emphasis>) protokol yang digunakan oleh peladen posel untuk bertukar dan mengarahkan posel."

msgid "Several Debconf questions are asked during the installation of the package. The answers allow generating a first version of the <filename>/etc/postfix/main.cf</filename> configuration file."
msgstr "Beberapa pertanyaan Debconf ditanyakan saat instalasi paket tersebut. Jawabannya memungkinkan menghasilkan versi pertama berkas konfigurasi <filename>/etc/postfix/main.cf</filename>."

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the recipient</secondary>"
msgid "<primary>Postfix</primary><secondary><filename>/etc/postfix/main.cf</filename></secondary>"
msgstr "<primary>surel</primary><secondary>penyaringan pada penerima</secondary>"

msgid "The first question deals with the type of setup. Only two of the proposed answers are relevant in case of an Internet-connected server, “Internet site” and “Internet with smarthost”. The former is appropriate for a server that receives incoming email and sends outgoing email directly to its recipients, and is therefore well-adapted to the Falcot Corp case. The latter is appropriate for a server receiving incoming email normally, but that sends outgoing email through an intermediate SMTP server — the “smarthost” — rather than directly to the recipient's server. This is mostly useful for individuals with a dynamic IP address, since many email servers reject messages coming straight from such an IP address. In this case, the smarthost will usually be the ISP's SMTP server, which is always configured to accept email coming from the ISP's customers and forward it appropriately. This setup (with a smarthost) is also relevant for servers that are not permanently connected to the internet, since it avoids having to manage a queue of undeliverable messages that need to be retried later."
msgstr "Pertanyaan pertama berkaitan dengan jenis pengaturan. Hanya dua jawaban relevan yang diajukan jika ada server yang tersambung ke internet, \"situs internet\" dan \"internet dengan smarthost\". Yang pertama sesuai untuk server yang menerima email masuk dan mengirim email keluar langsung ke penerimanya, dan karenanya cocok untuk kasus Falcot Corp. Yang terakhir ini sesuai untuk server yang menerima email masuk secara normal, namun mengirimkan email keluar melalui server SMTP menengah — ”smarthost” — bukan langsung ke server penerima. Ini sangat berguna bagi individu dengan alamat IP dinamis, karena banyak server email menolak pesan yang datang langsung dari alamat IP semacam itu. Dalam kasus ini, smarthost biasanya adalah SMTP server milik ISP, yang selalu dikonfigurasi untuk menerima email dari pelanggan ISP dan meneruskannya dengan tepat. Pengaturan ini (dengan smarthost) selalu relevan untuk server yang tidak terhubung secara permanen ke internet, karena menghindari harus mengatur antrian pesan tidak terkirim yang perlu dicoba ulang di waktu yang lain."

msgid "<emphasis>VOCABULARY</emphasis> ISP"
msgstr "<emphasis>KOSAKATA</emphasis> ISP"

msgid "<primary>ISP, Internet Service Provider</primary>"
msgstr "<primary>ISP, Internet Service Provider, Penyedia Layanan Internet</primary>"

#, fuzzy
#| msgid "ISP is the acronym for “Internet Service Provider”. It covers an entity, often a commercial company, that provides Internet connections and the associated basic services (email, news and so on)."
msgid "<acronym>ISP</acronym> is the acronym for “Internet Service Provider”. It covers an entity, often a commercial company, that provides Internet connections and the associated basic services (email, news and so on)."
msgstr "ISP merupakan akronim dari \"Internet Service Provider\" (penyedia layanan internet). Sebuah entitas, seringkali berupa perusaan komersial, yang menyediakan koneksi internet dan layanan dasar yang sesuai (email, berita, dan lain-lain)."

msgid "The second question deals with the full name of the machine, used to generate email addresses from a local user name; the full name of the machine ends up as the part after the at-sign (“@”). In the case of Falcot, the answer should be <literal>mail.falcot.com</literal>. This is the only question asked by default, but the configuration it leads to is not complete enough for the needs of Falcot, which is why the administrators run <command>dpkg-reconfigure postfix</command> so as to be able to customize more parameters."
msgstr "Pertanyaan kedua berkaitan dengan nama lengkap mesin, digunakan untuk menghasilkan alamat email dari nama pengguna lokal; nama lengkap mesin sebagai bagian setelah simbol-at (\"@\"). Dalam kasus Falcot, jawabannya seharusnya <literal>mail.falcot.com</literal>. Pertanyaan ini yang diajukan secara default, namun konfigurasi yang diembannya tidak cukup lengkap untuk kebutuhan Falcot, karenanya administrator menjalankan perintah <command>dpkg-reconfigure postfix</command> agar dapat menyesuaikan lebih banyak parameter."

msgid "One of the extra questions asks for all the domain names related to this machine. The default list includes its full name as well as a few synonyms for <literal>localhost</literal>, but the main <literal>falcot.com</literal> domain needs to be added by hand. More generally, this question should usually be answered with all the domain names for which this machine should serve as an MX server; in other words, all the domain names for which the DNS says that this machine will accept email. This information ends up in the <literal>mydestination</literal> variable of the main Postfix configuration file — <filename>/etc/postfix/main.cf</filename>."
msgstr "Salah satu pertanyaan tambahan yang diajukan untuk semua nama domain yang berhubungan dengan mesin. Daftar bawaan yang menyertakan nama lengkapnya sebagaimana sedikit padanan untuk <literal>localhost</literal>, namun domain utama <literal>falcot.com</literal> perlu ditambahkan sendiri. Lebih umumnya, pertanyaan ini seharusnya biasanya dijawab dengan seluruh nama domain yang mana mesin ini seharusnya melayani sebagai sebuah MX server; dengan kata lain, seluruh nama domain yang mana disebutkan DNS bahwa mesin ini akan menerima surel. Informasi ini berpangkal pada variabel <literal>mydestination</literal> pada berkas konfigurasi Postfix — <filename>/etc/postfix/main.cf</filename>."

msgid "<primary>server</primary><secondary>MX</secondary>"
msgstr "<primary>peladen</primary><secondary>MX</secondary>"

msgid "<primary>MX</primary><secondary>server</secondary>"
msgstr "<primary>MX</primary><secondary>peladen</secondary>"

msgid "Role of the DNS <emphasis>MX</emphasis> record while sending a mail"
msgstr "Aturan record DNS <emphasis>MX</emphasis> saat mengirimkan surel"

msgid "<emphasis>EXTRA</emphasis> Querying the MX records"
msgstr "<emphasis>EXTRA</emphasis> Query record MX"

msgid "When the DNS does not have an MX record for a domain, the email server will try sending the messages to the host itself, by using the matching A record (or AAAA in IPv6)."
msgstr "Ketika DNS tidak memilik record MX untuk sebuah domain, peladen surel akan mencoba mengirim pesan ke host-nya sendiri, dengan menggunakan record A (atau AAAA dalam IPv6)."

msgid "In some cases, the installation can also ask what networks should be allowed to send email via the machine. In its default configuration, Postfix only accepts emails coming from the machine itself; the local network will usually be added. The Falcot Corp administrators added <literal>192.168.0.0/16</literal> to the default answer. If the question is not asked, the relevant variable in the configuration file is <literal>mynetworks</literal>, as seen in the example below."
msgstr "Dalam beberapa kasus, instalasi juga dapat meminta jaringan apa yang harus diperbolehkan untuk mengirim surel melalui mesin. Dengan konfigurasi default, Postfix hanya menerima surel yang datang dari mesin itu sendiri; jaringan lokal biasanya akan ditambahkan. Administrator Falcot Corp menambahkan <literal>192.168.0.0/16</literal> ke jawaban default. Jika pertanyaan itu tidak muncul, variabel yang relevan dalam berkas konfigurasi adalah <literal>mynetworks</literal>, seperti yang terlihat dalam contoh di bawah ini."

#, fuzzy
#| msgid "Local email can also be delivered through <command>procmail</command>. This tool allows users to sort their incoming email according to rules stored in their <filename>~/.procmailrc</filename> file."
msgid "Local email can also be delivered through <command>procmail</command>. This tool allows users to sort their incoming email according to rules stored in their <filename>~/.procmailrc</filename> file. Both Postfix and Exim4 suggest <emphasis role=\"pkg\">procmail</emphasis> by default, but there are alternatives like <emphasis role=\"pkg\">maildrop</emphasis> or Sieve filters."
msgstr "Surel lokal juga dapat dikirimkan melalui <command>procmail</command>. Alat ini memungkinkan pengguna untuk memilah surel masuk mereka menurut aturan yang disimpan dalam berkas <filename>~/.procmailrc</filename> mereka."

msgid "<primary><command>procmail</command></primary>"
msgstr "<primary><command>procmail</command></primary>"

#, fuzzy
#| msgid "<primary><command>procmail</command></primary>"
msgid "<primary><command>maildrop</command></primary>"
msgstr "<primary><command>procmail</command></primary>"

msgid "<primary>email</primary><secondary>filtering</secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan</secondary>"

msgid "<primary>filtering email</primary>"
msgstr "<primary>menyaring surel</primary>"

msgid "After this first step, the administrators got the following configuration file; it will be used as a starting point for adding some extra functionality in the next sections."
msgstr "Setelah langkah pertama ini, para administrator mendapat berkas konfigurasi berikut; ini akan digunakan sebagai titik awal untuk menambahkan beberapa fungsi tambahan di bagian berikutnya."

msgid "Initial <filename>/etc/postfix/main.cf</filename> file"
msgstr "Berkas<filename>/etc/postfix/main.cf</filename> awal"

#, fuzzy
#| msgid "<primary>email</primary><secondary>server</secondary>"
msgid "<primary><filename>/etc/postfix/main.cf</filename></primary><secondary>example</secondary>"
msgstr "<primary>surel</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the recipient</secondary>"
msgid "<primary>Examples</primary><secondary><filename>/etc/postfix/main.cf</filename></secondary>"
msgstr "<primary>surel</primary><secondary>penyaringan pada penerima</secondary>"

#, fuzzy
#| msgid ""
#| "\n"
#| "# See /usr/share/postfix/main.cf.dist for a commented, more complete version\n"
#| "\n"
#| "\n"
#| "# Debian specific:  Specifying a file name will cause the first\n"
#| "# line of that file to be used as the name.  The Debian default\n"
#| "# is /etc/mailname.\n"
#| "#myorigin = /etc/mailname\n"
#| "\n"
#| "smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)\n"
#| "biff = no\n"
#| "\n"
#| "# appending .domain is the MUA's job.\n"
#| "append_dot_mydomain = no\n"
#| "\n"
#| "# Uncomment the next line to generate \"delayed mail\" warnings\n"
#| "#delay_warning_time = 4h\n"
#| "\n"
#| "readme_directory = no\n"
#| "\n"
#| "# TLS parameters\n"
#| "smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem\n"
#| "smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key\n"
#| "smtpd_use_tls=yes\n"
#| "smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache\n"
#| "smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache\n"
#| "\n"
#| "# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for\n"
#| "# information on enabling SSL in the smtp client.\n"
#| "\n"
#| "smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination\n"
#| "myhostname = mail.falcot.com\n"
#| "alias_maps = hash:/etc/aliases\n"
#| "alias_database = hash:/etc/aliases\n"
#| "myorigin = /etc/mailname\n"
#| "mydestination = mail.falcot.com, falcot.com, localhost.localdomain, localhost\n"
#| "relayhost = \n"
#| "mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128 192.168.0.0/16\n"
#| "mailbox_command = procmail -a \"$EXTENSION\"\n"
#| "mailbox_size_limit = 0\n"
#| "recipient_delimiter = +\n"
#| "inet_interfaces = all\n"
#| "inet_protocols = all"
msgid ""
"<![CDATA[\n"
"# See /usr/share/postfix/main.cf.dist for a commented, more complete version\n"
"\n"
"\n"
"# Debian specific:  Specifying a file name will cause the first\n"
"# line of that file to be used as the name.  The Debian default\n"
"# is /etc/mailname.\n"
"#myorigin = /etc/mailname\n"
"\n"
"smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)\n"
"biff = no\n"
"\n"
"# appending .domain is the MUA's job.\n"
"append_dot_mydomain = no\n"
"\n"
"# Uncomment the next line to generate \"delayed mail\" warnings\n"
"#delay_warning_time = 4h\n"
"\n"
"readme_directory = no\n"
"\n"
"# See http://www.postfix.org/COMPATIBILITY_README.html -- default to 2 on\n"
"# fresh installs.\n"
"compatibility_level = 2\n"
"\n"
"\n"
"\n"
"# TLS parameters\n"
"smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem\n"
"smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key\n"
"smtpd_use_tls=yes\n"
"smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache\n"
"smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache\n"
"\n"
"# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for\n"
"# information on enabling SSL in the smtp client.\n"
"\n"
"smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination\n"
"myhostname = mail.falcot.com\n"
"alias_maps = hash:/etc/aliases\n"
"alias_database = hash:/etc/aliases\n"
"myorigin = /etc/mailname\n"
"mydestination = mail.falcot.com, falcot.com, localhost.localdomain, localhost\n"
"relayhost =\n"
"mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128 192.168.0.0/16\n"
"mailbox_size_limit = 0\n"
"recipient_delimiter = +\n"
"inet_interfaces = all\n"
"inet_protocols = all\n"
"]]>"
msgstr ""
"\n"
"# See /usr/share/postfix/main.cf.dist for a commented, more complete version\n"
"\n"
"\n"
"# Debian specific:  Specifying a file name will cause the first\n"
"# line of that file to be used as the name.  The Debian default\n"
"# is /etc/mailname.\n"
"#myorigin = /etc/mailname\n"
"\n"
"smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)\n"
"biff = no\n"
"\n"
"# appending .domain is the MUA's job.\n"
"append_dot_mydomain = no\n"
"\n"
"# Uncomment the next line to generate \"delayed mail\" warnings\n"
"#delay_warning_time = 4h\n"
"\n"
"readme_directory = no\n"
"\n"
"# TLS parameters\n"
"smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem\n"
"smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key\n"
"smtpd_use_tls=yes\n"
"smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache\n"
"smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache\n"
"\n"
"# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for\n"
"# information on enabling SSL in the smtp client.\n"
"\n"
"smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated defer_unauth_destination\n"
"myhostname = mail.falcot.com\n"
"alias_maps = hash:/etc/aliases\n"
"alias_database = hash:/etc/aliases\n"
"myorigin = /etc/mailname\n"
"mydestination = mail.falcot.com, falcot.com, localhost.localdomain, localhost\n"
"relayhost = \n"
"mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128 192.168.0.0/16\n"
"mailbox_command = procmail -a \"$EXTENSION\"\n"
"mailbox_size_limit = 0\n"
"recipient_delimiter = +\n"
"inet_interfaces = all\n"
"inet_protocols = all"

msgid "<emphasis>SECURITY</emphasis> <emphasis>Snake oil</emphasis> SSL certificates"
msgstr "<emphasis>KEAMANAN</emphasis> Sertifikat SSL <emphasis>Snake oil</emphasis>"

#, fuzzy
#| msgid "The <emphasis>snake oil</emphasis> certificates, like the <emphasis>snake oil</emphasis> “medicine” sold by unscrupulous quacks in old times, have absolutely no value: you cannot rely on them to authenticate the server since they are automatically generated self-signed certificates. However they are useful to improve the privacy of the exchanges."
msgid "The <emphasis>snake oil</emphasis> certificates, like the <emphasis>snake oil</emphasis> “medicine” sold by unscrupulous quacks in old times, have absolutely no value: you cannot rely on them to authenticate the server since they are automatically generated self-signed certificates. However, they are useful to improve the privacy of the exchanges."
msgstr "Sertifikat <emphasis>minyak ular</emphasis>, seperti \"obat\" <emphasis>minyak ular</emphasis> yang dijual oleh dukun palsu di jaman dahulu, benar-benar tidak memiliki nilai: Anda tidak dapat mengandalkan mereka untuk mengotentikasi server karena mereka sertifikat  yang ditandatangani sendiri yang dihasilkan secara otomatis. Namun mereka sangat berguna untuk meningkatkan privasi pertukaran."

msgid "In general they should only be used for testing purposes, and normal service must use real certificates. The <link linkend=\"sidebar.letsencrypt\">Let's encrypt</link> initiative offers free and trusted SSL/TLS certificates, which can be generated using the <emphasis role=\"pkg\">certbot</emphasis> package as described in <xref linkend=\"sect.apache-ssl\" /> and then used in <command>postfix</command> like this:"
msgstr ""

#, fuzzy
#| msgid "<primary><emphasis>Network</emphasis></primary><secondary><emphasis>File System</emphasis></secondary>"
msgid "<primary>Postfix</primary><secondary><emphasis role=\"pkg\">certbot</emphasis></secondary>"
msgstr "<primary><emphasis>Network</emphasis></primary><secondary><emphasis>File System</emphasis></secondary>"

#, fuzzy
#| msgid "<primary>HTTP</primary><secondary>secure</secondary>"
msgid "<primary>Postfix</primary><secondary>trusted certificates</secondary>"
msgstr "<primary>HTTP</primary><secondary>aman</secondary>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>smtpd_tls_cert_file</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>smtpd_tls_key_file</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>smtpd_tls_CAfile</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>smtpd_tls_CApath</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>smtp_tls_CApath</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

msgid ""
"\n"
"smtpd_tls_cert_file = /etc/letsencrypt/live/<replaceable>DOMAIN</replaceable>/fullchain.pem\n"
"smtpd_tls_key_file = /etc/letsencrypt/live/<replaceable>DOMAIN</replaceable>/privkey.pem\n"
"smtpd_tls_CAfile = /etc/ssl/certs/ca-certificates.crt\n"
"smtpd_tls_CApath = /etc/ssl/certs\n"
"smtp_tls_CApath = /etc/ssl/certs"
msgstr ""

msgid "A different way to generate own certificates is described in <xref linkend=\"sect.easy-rsa\" />."
msgstr ""

msgid "Configuring Virtual Domains"
msgstr "Mengkonfigurasi Domain Virtual"

#, fuzzy
#| msgid "<primary>alias</primary><secondary>virtual alias domain</secondary>"
msgid "<primary>Postfix</primary><secondary>virtual domain</secondary>"
msgstr "<primary>alias</primary><secondary>domain alias virtual</secondary>"

msgid "<primary>domain</primary><secondary>virtual</secondary>"
msgstr "<primary>domain</primary><secondary>virtual</secondary>"

msgid "<primary>virtual domain</primary>"
msgstr "<primary>domain virtual</primary>"

msgid "The mail server can receive emails addressed to other domains besides the main domain; these are then known as virtual domains. In most cases where this happens, the emails are not ultimately destined to local users. Postfix provides two interesting features for handling virtual domains."
msgstr "Server surat dapat menerima surel yang ditujukan kepada domain lain selain domain utama; ini kemudian dikenal sebagai domain virtual. Dalam kebanyakan kasus di mana hal ini terjadi, surel pada akhirnya tidak ditujukan ke pengguna lokal. Postfix menyediakan dua fitur menarik untuk menangani virtual domain."

msgid "<emphasis>CAUTION</emphasis> Virtual domains and canonical domains"
msgstr "<emphasis>HATI-HATI</emphasis> Domain virtual dan domain kanonik"

msgid "None of the virtual domains must be referenced in the <literal>mydestination</literal> variable; this variable only contains the names of the “canonical” domains directly associated to the machine and its local users."
msgstr "Tak satu pun dari domain virtual boleh dirujuk dalam variabel <literal>mydestination</literal>; variabel ini hanya berisi nama-nama domain \"kanonik\" yang secara langsung terkait dengan mesin dan pengguna lokal."

msgid "Virtual Alias Domains"
msgstr "Domain Alias Virtual"

msgid "<primary>alias</primary><secondary>virtual alias domain</secondary>"
msgstr "<primary>alias</primary><secondary>domain alias virtual</secondary>"

msgid "<primary>virtual domain</primary><secondary>virtual alias domain</secondary>"
msgstr "<primary>domain virtual</primary><secondary>domain alias virtual</secondary>"

msgid "A virtual alias domain only contains aliases, i.e. addresses that only forward emails to other addresses."
msgstr "Suatu domain alias virtual hanya berisi alias, yaitu alamat-alamat yang hanya meneruskan surel ke alamat lain."

msgid "Such a domain is enabled by adding its name to the <literal>virtual_alias_domains</literal> variable, and referencing an address mapping file in the <literal>virtual_alias_maps</literal> variable."
msgstr "Domain seperti itu diaktifkan dengan menambahkan nama ke variabel <literal>virtual_alias_domains</literal>, dan mereferensi berkas pemetaan alamat dalam variabel <literal>virtual_alias_maps</literal>."

#, fuzzy
#| msgid "<primary>alias</primary><secondary>virtual alias domain</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>virtual_alias_domains</literal></secondary>"
msgstr "<primary>alias</primary><secondary>domain alias virtual</secondary>"

#, fuzzy
#| msgid "<primary>alias</primary><secondary>virtual alias domain</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>virtual_alias_maps</literal></secondary>"
msgstr "<primary>alias</primary><secondary>domain alias virtual</secondary>"

msgid ""
"\n"
"virtual_alias_domains = falcotsbrand.com\n"
"virtual_alias_maps = hash:/etc/postfix/virtual"
msgstr ""
"\n"
"virtual_alias_domains = falcotsbrand.com\n"
"virtual_alias_maps = hash:/etc/postfix/virtual"

msgid "The <filename>/etc/postfix/virtual</filename> file describes a mapping with a rather straightforward syntax: each line contains two fields separated by whitespace; the first field is the alias name, the second field is a list of email addresses where it redirects. The special <literal>@domain.com</literal> syntax covers all remaining aliases in a domain."
msgstr "Berkas <filename>/etc/postfix/virtual</filename> menjelaskan pemetaan dengan sintaks yang agak sederhana: setiap baris berisi dua field yang dipisahkan oleh spasi; field pertama adalah nama alias, field kedua adalah daftar alamat surel tujuan pengalihan. Sintaks khusus <literal>@domain.com</literal> mencakup semua sisa alias dalam suatu domain."

#, fuzzy
#| msgid "<primary>domain</primary><secondary>virtual</secondary>"
msgid "<primary>Postfix</primary><secondary><filename>/etc/postfix/virtual</filename></secondary>"
msgstr "<primary>domain</primary><secondary>virtual</secondary>"

#, fuzzy
#| msgid ""
#| "\n"
#| "webmaster@falcotsbrand.com  jean@falcot.com\n"
#| "contact@falcotsbrand.com    laure@falcot.com, sophie@falcot.com\n"
#| "# The alias below is generic and covers all addresses within \n"
#| "# the falcotsbrand.com domain not otherwise covered by this file.\n"
#| "# These addresses forward email to the same user name in the\n"
#| "# falcot.com domain.\n"
#| "@falcotsbrand.com           @falcot.com"
msgid ""
"\n"
"webmaster@falcotsbrand.com  jean@falcot.com\n"
"contact@falcotsbrand.com    laure@falcot.com, sophie@falcot.com\n"
"# The alias below is generic and covers all addresses within\n"
"# the falcotsbrand.com domain not otherwise covered by this file.\n"
"# These addresses forward email to the same user name in the\n"
"# falcot.com domain.\n"
"@falcotsbrand.com           @falcot.com"
msgstr ""
"\n"
"webmaster@falcotsbrand.com  jean@falcot.com\n"
"contact@falcotsbrand.com    laure@falcot.com, sophie@falcot.com\n"
"# The alias below is generic and covers all addresses within \n"
"# the falcotsbrand.com domain not otherwise covered by this file.\n"
"# These addresses forward email to the same user name in the\n"
"# falcot.com domain.\n"
"@falcotsbrand.com           @falcot.com"

msgid "After changing <filename>/etc/postfix/virtual</filename> the postfix table <filename>/etc/postfix/virtual.db</filename> needs to be updated using <command>sudo postmap /etc/postfix/virtual</command>."
msgstr ""

msgid "Virtual Mailbox Domains"
msgstr "Domain Kotak Surat Virtual"

msgid "<primary>mailbox, virtual domain</primary>"
msgstr "<primary>kotak surat, domain virtual</primary>"

msgid "<primary>virtual domain</primary><secondary>virtual mailbox domain</secondary>"
msgstr "<primary>domain virtual</primary><secondary>domain kotak surat virtual</secondary>"

msgid "<emphasis>CAUTION</emphasis> Combined virtual domain?"
msgstr "<emphasis>HATI-HATI</emphasis> Gabungan domain virtual?"

msgid "Postfix does not allow using the same domain in both <literal>virtual_alias_domains</literal> and <literal>virtual_mailbox_domains</literal>. However, every domain of <literal>virtual_mailbox_domains</literal> is implicitly included in <literal>virtual_alias_domains</literal>, which makes it possible to mix aliases and mailboxes within a virtual domain."
msgstr "Postfix tidak mengizinkan menggunakan domain yang sama sekaligus di <literal>virtual_alias_domains</literal> dan <literal>virtual_mailbox_domains</literal>. Namun, setiap domain <literal>virtual_mailbox_domains</literal> secara implisit dimasukkan ke dalam <literal>virtual_alias_domains</literal>, yang memungkinkan untuk mencampur alias dan kotak surat dalam suatu domain virtual."

msgid "Messages addressed to a virtual mailbox domain are stored in mailboxes not assigned to a local system user."
msgstr "Pesan-pesan yang ditujukan ke kotak surat domain virtual disimpan dalam kotak surat yang tidak ditugaskan ke pengguna sistem lokal."

msgid "Enabling a virtual mailbox domain requires naming this domain in the <literal>virtual_mailbox_domains</literal> variable, and referencing a mailbox mapping file in <literal>virtual_mailbox_maps</literal>. The <literal>virtual_mailbox_base</literal> parameter contains the directory under which the mailboxes will be stored."
msgstr "Memfungsikan kotak surat domain virtual memerlukan menamai domain ini dalam variabel <literal>virtual_mailbox_domains</literal>, dan mereferensi ke berkas pemetaan kotak surat di <literal>virtual_mailbox_maps</literal>. Parameter <literal>virtual_mailbox_base</literal> berisi direktori di mana kotak pesan akan disimpan."

#, fuzzy
#| msgid "<primary>virtual domain</primary><secondary>virtual mailbox domain</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>virtual_mailbox_domains</literal></secondary>"
msgstr "<primary>domain virtual</primary><secondary>domain kotak surat virtual</secondary>"

#, fuzzy
#| msgid "<primary>virtual domain</primary><secondary>virtual mailbox domain</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>virtual_mailbox_maps</literal></secondary>"
msgstr "<primary>domain virtual</primary><secondary>domain kotak surat virtual</secondary>"

msgid ""
"\n"
"virtual_mailbox_domains = falcot.org\n"
"virtual_mailbox_maps = hash:/etc/postfix/vmailbox\n"
"virtual_mailbox_base = /var/mail/vhosts"
msgstr ""
"\n"
"virtual_mailbox_domains = falcot.org\n"
"virtual_mailbox_maps = hash:/etc/postfix/vmailbox\n"
"virtual_mailbox_base = /var/mail/vhosts"

msgid "The <literal>virtual_uid_maps</literal> parameter (respectively <literal>virtual_gid_maps</literal>) references the file containing the mapping between the email address and the system user (respectively group) that “owns” the corresponding mailbox. To get all mailboxes owned by the same owner/group, the <literal>static:5000</literal> syntax assigns a fixed UID/GID (of value 5000 here)."
msgstr "Parameter <literal>virtual_uid_maps</literal> (dan <literal>virtual_gid_maps</literal>) mengacu ke berkas yang berisi pemetaan antara alamat surel dan sistem pengguna (dan kelompok) yang \"memiliki\" kotak surat yang sesuai. Agar semua kotak surat dimiliki oleh pemilik/kelompok yang sama, sintaks <literal>static:5000</literal> menetapkan UID/GID tertentu (yang bernilai 5000 di sini)."

#, fuzzy
#| msgid "<primary>domain</primary><secondary>virtual</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>virtual_uid_maps</literal></secondary>"
msgstr "<primary>domain</primary><secondary>virtual</secondary>"

#, fuzzy
#| msgid "<primary>domain</primary><secondary>virtual</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>virtual_gid_maps</literal></secondary>"
msgstr "<primary>domain</primary><secondary>virtual</secondary>"

msgid "Again, the syntax of the <filename>/etc/postfix/vmailbox</filename> file is quite straightforward: two fields separated with whitespace. The first field is an email address within one of the virtual domains, and the second field is the location of the associated mailbox (relative to the directory specified in <emphasis>virtual_mailbox_base</emphasis>). If the mailbox name ends with a slash (<literal>/</literal>), the emails will be stored in the <emphasis>maildir</emphasis> format; otherwise, the traditional <emphasis>mbox</emphasis> format will be used. The <emphasis>maildir</emphasis> format uses a whole directory to store a mailbox, each individual message being stored in a separate file. In the <emphasis>mbox</emphasis> format, on the other hand, the whole mailbox is stored in one file, and each line starting with “<literal>From </literal>” (<literal>From</literal> followed by a space) signals the start of a new message."
msgstr "Sekali lagi, sintaks berkas <filename>/etc/postfix/vmailbox</filename> cukup sederhana: dua field dipisahkan dengan spasi. Field pertama adalah alamat surel dalam salah satu domain virtual, dan field kedua adalah lokasi kotak surat yang terkait (relatif terhadap direktori yang ditentukan dalam <emphasis>virtual_mailbox_base</emphasis>). Jika nama kotak surat berakhir dengan garis miring (<literal>/</literal>), surel akan disimpan dalam format <emphasis>maildir</emphasis>; jika tidak, format tradisional <emphasis>mbox</emphasis> akan digunakan. Format <emphasis>maildir</emphasis> menggunakan seluruh direktori untuk menyimpan kotak surat, masing-masing pesan disimpan dalam berkas terpisah. Dalam format <emphasis>mbox</emphasis>, seluruh kotak surat disimpan dalam satu berkas, dan setiap baris yang dimulai dengan \"<literal>From </literal>\" (<literal>From</literal> diikuti dengan spasi) menandai awal pesan baru."

#, fuzzy
#| msgid "<primary>WebRTC</primary><secondary>demonstration</secondary>"
msgid "<primary>Postfix</primary><secondary><filename>/etc/postfix/vmailbox</filename></secondary>"
msgstr "<primary>Demonstrasi</primary><secondary>WebRTC</secondary>"

#, fuzzy
#| msgid "<primary>virtual domain</primary><secondary>virtual mailbox domain</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>virtual_mailbox_base</literal></secondary>"
msgstr "<primary>domain virtual</primary><secondary>domain kotak surat virtual</secondary>"

msgid ""
"\n"
"# Jean's email is stored as maildir, with\n"
"# one file per email in a dedicated directory\n"
"jean@falcot.org falcot.org/jean/\n"
"# Sophie's email is stored in a traditional \"mbox\" file,\n"
"# with all mails concatenated into one single file\n"
"sophie@falcot.org falcot.org/sophie"
msgstr ""
"\n"
"# Surel Jean disimpan sebagai maildir, dengan\n"
"# satu berkas per surel dalam suatu direktori\n"
"# terdedikasi\n"
"jean@falcot.org falcot.org/jean/\n"
"# Surel Sophie's disimpan dalam suatu berkas \"mbox\"\n"
"# tradisional dengan semua surel disambung ke dalam\n"
"# satu berkas tunggal\n"
"sophie@falcot.org falcot.org/sophie"

msgid "Restrictions for Receiving and Sending"
msgstr "Pembatasan Penerimaan dan Pengiriman"

msgid "The growing number of unsolicited bulk emails (<emphasis>spam</emphasis>) requires being increasingly strict when deciding which emails a server should accept. This section presents some of the strategies included in Postfix."
msgstr "Meningkatnya jumlah surel massal yang tidak diminta (<emphasis>spam</emphasis>) memerlukan menjadi semakin ketat ketika memutuskan surel mana yang mesti diterima oleh server. Bagian ini menyajikan beberapa strategi yang termasuk dalam Postfix."

msgid "If the reject-rules are too strict, it may happen that even legitimate email traffic gets locked out. It is therefor a good habit to test restrictions and prevent the permanent rejection of requests during this time using the <literal>soft_bounce = yes</literal> directive. By prepending a reject-type directive with <literal>warn_if_reject</literal> only a log message will be recorded instead of rejecting the request."
msgstr ""

#, fuzzy
#| msgid "<primary>domain</primary><secondary>virtual</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>soft_bounce</literal></secondary>"
msgstr "<primary>domain</primary><secondary>virtual</secondary>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>warn_if_reject</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

msgid "<emphasis>CULTURE</emphasis> The spam problem"
msgstr "<emphasis>KULTUR</emphasis> Masalah spam"

msgid "<primary>spam</primary>"
msgstr "<primary>spam</primary>"

#, fuzzy
#| msgid "<primary>filtering email</primary>"
msgid "<primary>unsolicited commercial email</primary><see>spam</see>"
msgstr "<primary>menyaring surel</primary>"

#, fuzzy
#| msgid "“Spam” is a generic term used to designate all the unsolicited commercial emails (also known as UCEs) that flood our electronic mailboxes; the unscrupulous individuals sending them are known as spammers. They care little about the nuisance they cause, since sending an email costs very little, and only a very small percentage of recipients need to be attracted by the offers for the spamming operation to make more money than it costs. The process is mostly automated, and any email address made public (for instance, on a web forum, or on the archives of a mailing list, or on a blog, and so on) will be discovered by the spammers' robots, and subjected to a never-ending stream of unsolicited messages."
msgid "“Spam” is a generic term used to designate all the unsolicited commercial emails (also known as UCEs) that flood our electronic mailboxes; the unscrupulous individuals sending them are known as spammers. They care little about the nuisance they cause, since sending an email costs very little, and only a very small percentage of recipients need to be attracted by the offers for the spamming operation to make more money than it costs. The process is mostly automated, and any email address made public (for instance, on a web forum, or on the archives of a mailing list, or on a blog, and so on) will be likely discovered by the spammers' robots, and subjected to a never-ending stream of unsolicited messages. Also every contact found at a compromised system is targeted."
msgstr "\"Spam\" adalah istilah umum yang digunakan untuk menamai semua surel komersial yang tidak diinginkan (juga dikenal sebagai UCE) yang membanjiri kotak surat elektronik kita; individu-individu yang tidak bermoral yang mengirim mereka dikenal sebagai spammer. Mereka tidak peduli tentang gangguan yang mereka sebabkan, karena mengirimkan surel biayanya sangat rendah, dan hanya persentase yang sangat kecil dari penerima yang perlu tertarik dengan tawaran agar operasi spam menghasilkan lebih daripada biaya. Prosesnya kebanyakan otomatis, dan alamat surel yang dibuat publik (misalnya, di forum web, atau di arsip milis, atau di blog, dan sebagainya) akan ditemukan oleh robot spammer, dan menjadi sasaran pesan tak diharapkan yang tidak pernah berakhir."

msgid "All system administrators try to face this nuisance with spam filters, but of course spammers keep adjusting to try to work around these filters. Some even rent networks of machines compromised by a worm from various crime syndicates. Recent statistics estimate that up to 95% of all emails circulating on the Internet are spam!"
msgstr "Semua administrator sistem mencoba untuk menghadapi gangguan dengan filter spam, tapi tentu saja spammer terus menyesuaikan diri dengan mencoba menghindari filter ini. Beberapa bahkan menyewa jaringan mesin yang terkompromi oleh worm dari berbagai sindikat kejahatan. Statistik baru-baru ini memperkirakan bahwa hingga 95% dari semua surel yang beredar di Internet adalah spam!"

msgid "IP-Based Access Restrictions"
msgstr "Pembatasan Akses Berbasis IP"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>smtpd_client_restrictions</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the recipient</secondary>"
msgid "<primary>email</primary><secondary>filtering on the client host</secondary>"
msgstr "<primary>surel</primary><secondary>penyaringan pada penerima</secondary>"

msgid "The <literal>smtpd_client_restrictions</literal> directive controls which machines are allowed to communicate with the email server."
msgstr "Direktif <literal>smtpd_client_restrictions</literal> mengendalikan mesin mana yang diperbolehkan untuk berkomunikasi dengan server surel."

#, fuzzy
#| msgid "When a variable contains a list of rules, as in the example above, these rules are evaluated in order, from the first to the last. Each rule can accept the message, reject it, or leave the decision to a following rule. As a consequence, order matters, and simply switching two rules can lead to a widely different behavior."
msgid "When a variable contains a list of rules, as in the example below, these rules are evaluated in order, from the first to the last. Each rule can accept the message, reject it, or leave the decision to a following rule. As a consequence, order matters, and simply switching two rules can lead to a widely different behavior."
msgstr "Ketika suatu variabel berisi daftar aturan, seperti pada contoh di atas, aturan-aturan ini dievaluasi berurutan, dari pertama sampai terakhir. Setiap aturan dapat menerima pesan, menolak, atau menyerahkan keputusan ke aturan berikutnya. Sebagai akibatnya, urutan penting, dan sekedar mempertukarkan dua aturan dapat menyebabkan perilaku yang sangat berbeda."

msgid "Restrictions Based on Client Address"
msgstr "Pembatasan Berbasis Alamat Klien"

#, fuzzy
#| msgid ""
#| "\n"
#| "smtpd_client_restrictions = permit_mynetworks,\n"
#| "    warn_if_reject reject_unknown_client,\n"
#| "    check_client_access hash:/etc/postfix/access_clientip,\n"
#| "    reject_rbl_client sbl-xbl.spamhaus.org,\n"
#| "    reject_rbl_client list.dsbl.org"
msgid ""
"\n"
"smtpd_client_restrictions =\n"
"    permit_mynetworks,\n"
"    warn_if_reject reject_unknown_client_hostname,\n"
"    check_client_access hash:/etc/postfix/access_clientip,\n"
"    reject_rhsbl_reverse_client dbl.spamhaus.org,\n"
"    reject_rhsbl_reverse_client rhsbl.sorbs.net,\n"
"    reject_rbl_client zen.spamhaus.org,\n"
"    reject_rbl_client dnsbl.sorbs.net"
msgstr ""
"\n"
"smtpd_client_restrictions = permit_mynetworks,\n"
"    warn_if_reject reject_unknown_client,\n"
"    check_client_access hash:/etc/postfix/access_clientip,\n"
"    reject_rbl_client sbl-xbl.spamhaus.org,\n"
"    reject_rbl_client list.dsbl.org"

#, fuzzy
#| msgid "The <literal>permit_mynetworks</literal> directive, used as the first rule, accepts all emails coming from a machine in the local network (as defined by the <emphasis>mynetworks</emphasis> configuration variable)."
msgid "The <literal>permit_mynetworks</literal> directive, used as the first rule, accepts all emails coming from a machine in the local network (as defined by the <literal>mynetworks</literal> configuration variable)."
msgstr "Direktif <literal>permit_mynetworks</literal>, yang digunakan sebagai aturan pertama, menerima semua surel yang datang dari mesin jaringan lokal (seperti yang didefinisikan oleh variabel konfigurasi <emphasis>mynetworks</emphasis>)."

#, fuzzy
#| msgid "The second directive would normally reject emails coming from machines without a completely valid DNS configuration. Such a valid configuration means that the IP address can be resolved to a name, and that this name, in turn, resolves to the IP address. This restriction is often too strict, since many email servers do not have a reverse DNS for their IP address. This explains why the Falcot administrators prepended the <literal>warn_if_reject</literal> modifier to the <literal>reject_unknown_client</literal> directive: this modifier turns the rejection into a simple warning recorded in the logs. The administrators can then keep an eye on the number of messages that would be rejected if the rule were actually enforced, and make an informed decision later if they wish to enable such enforcement."
msgid "The second directive would normally reject emails coming from machines without a completely valid DNS configuration. Such a valid configuration means that the IP address can be resolved to a name, and that this name, in turn, resolves to the IP address. This restriction is often too strict, since many email servers do not have a reverse DNS for their IP address. This explains why the Falcot administrators prepended the <literal>warn_if_reject</literal> modifier to the <literal>reject_unknown_client</literal> directive: this modifier <link linkend=\"postfix-safety-net\">turns the rejection into a simple warning recorded in the logs</link>. The administrators can then keep an eye on the number of messages that would be rejected if the rule were actually enforced, and make an informed decision later if they wish to enable such enforcement."
msgstr "Direktif kedua biasanya akan menolak surel yang datang dari mesin tanpa konfigurasi DNS yang sepenuhnya valid. Sebuah konfigurasi yang valid berarti bahwa alamat IP dapat di-resolve ke suatu nama, dan bahwa nama ini, pada gilirannya, di-resolve ke alamat IP. Pembatasan ini sering terlalu ketat, karena banyak server surel yang tidak memiliki reverse DNS untuk alamat IP mereka. Ini menjelaskan mengapa para administrator Falcot mengawali pengubah <literal>warn_if_reject</literal> ke direktif <literal>reject_unknown_client</literal>: pengubah ini mengubah penolakan menjadi peringatan sederhana yang tercatat dalam log. Administrator dapat kemudian mengawasi jumlah pesan yang akan ditolak jika aturan yang benar-benar ditegakkan, dan membuat keputusan kemudian jika mereka ingin memberlakukan aturan itu."

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the sender</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>reject_unknown_client_hostname</literal></secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan pada pengirim</secondary>"

msgid "<emphasis>TIP</emphasis> <emphasis>access</emphasis> tables"
msgstr "<emphasis>TIP</emphasis> tabel <emphasis>access</emphasis>"

#, fuzzy
#| msgid "The restriction criteria include administrator-modifiable tables listing combinations of senders, IP addresses, and allowed or forbidden hostnames. These tables can be created from an uncompressed copy of the <filename>/usr/share/doc/postfix-doc/examples/access.gz</filename> file. This model is self-documented in its comments, which means each table describes its own syntax."
msgid "The restriction criteria include administrator-modifiable tables listing combinations of senders, IP addresses, and allowed or forbidden hostnames. These tables can be created using an uncompressed copy of the <filename>/usr/share/doc/postfix/examples/access.gz</filename> file shipped with the <emphasis role=\"pkg\">postfix-doc</emphasis> package. This model is self-documented in its comments, which means each table describes its own syntax."
msgstr "Kriteria pembatasan termasuk tabel yang dapat dimodifikasi oleh administrator berisi daftar kombinasi pengirim, alamat IP, dan nama host yang diperbolehkan atau dilarang. Tabel ini dapat dibuat dari salinan berkas terkompresi <filename>/usr/share/doc/postfix-doc/examples/access.gz</filename>. Model ini didokumentasikan mandiri dalam komentar, yang berarti setiap tabel menjelaskan sintaksnya sendiri."

#, fuzzy
#| msgid "The <filename>/etc/postfix/access_clientip</filename> table lists IP addresses and networks; <filename>/etc/postfix/access_helo</filename> lists domain names; <filename>/etc/postfix/access_sender</filename> contains sender email addresses. All these files need to be turned into hash-tables (a format optimized for fast access) after each change, with the <command>postmap /etc/postfix/<replaceable>file</replaceable></command> command."
msgid "The <filename>/etc/postfix/access_clientip</filename> table lists IP addresses and networks; <filename>/etc/postfix/access_helo</filename> lists domain names; <filename>/etc/postfix/access_sender</filename> contains sender email addresses. All these files need to be turned into hash-tables (a format optimized for fast access) after each change, with the <command>sudo postmap /etc/postfix/<replaceable>file</replaceable></command> command."
msgstr "Tabel <filename>/etc/postfix/access_clientip</filename> menampung daftar alamat IP dan jaringan; <filename>/etc/postfix/access_helo</filename> berisi daftar nama domain; <filename>/etc/postfix/access_sender</filename> berisi alamat surel pengirim. Semua berkas ini harus diubah menjadi tabel hash (format yang dioptimalkan untuk akses cepat) setelah setiap perubahan, dengan perintah <command>postmap /etc/postfix/<replaceable>berkas</replaceable></command>."

msgid "The third directive allows the administrator to set up a blacklist and a whitelist of email servers, stored in the <filename>/etc/postfix/access_clientip</filename> file. Servers in the whitelist are considered as trusted, and the emails coming from there therefore do not go through the following filtering rules."
msgstr "Direktif ketiga memungkinkan administrator untuk mengatur blacklist dan whitelist server surel, disimpan dalam berkas <filename>/etc/postfix/access_clientip</filename>. Server di whitelist dianggap sebagai dipercaya, dan surel yang datang dari sana tidak diperiksa memakai aturan penyaringan berikut."

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>client</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>check_client_access</literal></secondary>"
msgstr "<primary>NFS</primary><secondary>klien</secondary>"

#, fuzzy
#| msgid "The last two rules reject any message coming from a server listed in one of the indicated blacklists. RBL is an acronym for <emphasis>Remote Black List</emphasis>; there are several such lists, but they all list badly configured servers that spammers use to relay their emails, as well as unexpected mail relays such as machines infected with worms or viruses."
msgid "The last four rules reject any message coming from a server listed in one of the indicated blacklists. <acronym>RBL</acronym> is an acronym for <emphasis>Remote Black List</emphasis>, and <acronym>RHSBL</acronym> stands for <emphasis>Right-Hand Side Black List</emphasis>. The difference is, that the former lists IP addresses, whereas the latter lists domain names. There are several such services. They list domains and IP addresses with poor reputation, badly configured servers that spammers use to relay their emails, as well as unexpected mail relays such as machines infected with worms or viruses."
msgstr "Dua aturan terakhir menolak pesan yang berasal dari server yang tercantum dalam salah satu blacklist yang ditunjukkan. RBL adalah akronim untuk <emphasis>Remote Black List</emphasis>; ada beberapa daftar seperti itu, tetapi mereka semua memuat daftar server yang dikonfigurasi secara buruk yang dipakai oleh spammer untuk me-relay surel mereka, maupun pe-relay surel yang tak terduga seperti mesin-mesin yang terinfeksi worm atau virus."

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>client</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>reject_rbl_client</literal></secondary>"
msgstr "<primary>NFS</primary><secondary>klien</secondary>"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>client</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>reject_rhsbl_client</literal></secondary>"
msgstr "<primary>NFS</primary><secondary>klien</secondary>"

msgid "<emphasis>TIP</emphasis> White list and RBLs"
msgstr "<emphasis>TIPS</emphasis> Daftar putih dan RBL"

#, fuzzy
#| msgid "<primary>Remote Black List</primary>"
msgid "<primary>RBL</primary><see>Remote Black List</see>"
msgstr "<primary>Remote Black List</primary>"

msgid "<primary>Remote Black List</primary>"
msgstr "<primary>Remote Black List</primary>"

msgid "Blacklists sometimes include a legitimate server that has been suffering an incident. In these situations, all emails coming from one of these servers would be rejected unless the server is listed in a whitelist defined by <filename>/etc/postfix/access_clientip</filename>."
msgstr "Blacklist kadang-kadang mencakup server sah yang telah mengalami insiden. Dalam situasi ini, semua surel yang datang dari salah satu server tersebut akan ditolak kecuali apabila server tercantum dalam daftar putih yang didefinisikan oleh <filename>/etc/postfix/access_clientip</filename>."

#, fuzzy
#| msgid "Prudence therefore recommends including in the whitelist all the trusted servers from which many emails are usually received."
msgid "Prudence therefore recommends including in the whitelist(s) all the trusted servers from which many emails are usually received."
msgstr "Kehati-hatian karena itu merekomendasikan memasukkan di whitelist semua server terpercaya yang biasanya kita terima banyak surel dari mereka."

msgid "Checking the Validity of the <literal>EHLO</literal> or <literal>HELO</literal> Commands"
msgstr "Memeriksa Validitas Perintah <literal>EHLO</literal> atau <literal>HELO</literal>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>smtpd_helo_restrictions</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the sender</secondary>"
msgid "<primary>email</primary><secondary>filtering on the mail host</secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan pada pengirim</secondary>"

msgid "Each SMTP exchange starts with a <literal>HELO</literal> (or <literal>EHLO</literal>) command, followed by the name of the sending email server. Checking the validity of this name can be interesting. To fully enforce the restrictions listed in <literal>smtpd_helo_restrictions</literal> the <literal>smtpd_helo_required</literal> option needs to be enabled. Otherwise clients could skip the restrictions by not sending any <literal>HELO</literal>/<literal>EHLO</literal> command."
msgstr ""

msgid "<primary><literal>HELO</literal></primary>"
msgstr "<primary><literal>HELO</literal></primary>"

#, fuzzy
#| msgid "<primary><literal>EHLO</literal></primary>"
msgid "<primary><literal>EHLO</literal></primary><seealso>HELO</seealso>"
msgstr "<primary><literal>EHLO</literal></primary>"

#, fuzzy
#| msgid "<primary>server</primary><secondary>HTTP</secondary>"
msgid "<primary><literal>SMTP</literal></primary><secondary>HELO</secondary>"
msgstr "<primary>server</primary><secondary>HTTP</secondary>"

#, fuzzy
#| msgid "<primary>server</primary><secondary>HTTP</secondary>"
msgid "<primary><literal>SMTP</literal></primary><secondary>EHLO</secondary>"
msgstr "<primary>server</primary><secondary>HTTP</secondary>"

msgid "Restrictions on the name announced in <literal>EHLO</literal>"
msgstr "Pembatasan pada nama yang diumumkan di <literal>EHLO</literal>"

#, fuzzy
#| msgid ""
#| "\n"
#| "smtpd_client_restrictions = permit_mynetworks,\n"
#| "    warn_if_reject reject_unknown_client,\n"
#| "    check_client_access hash:/etc/postfix/access_clientip,\n"
#| "    reject_rbl_client sbl-xbl.spamhaus.org,\n"
#| "    reject_rbl_client list.dsbl.org"
msgid ""
"\n"
"smtpd_helo_required = yes\n"
"smtpd_helo_restrictions =\n"
"    permit_mynetworks,\n"
"    reject_invalid_helo_hostname,\n"
"    reject_non_fqdn_helo_hostname,\n"
"    warn_if_reject reject_unknown_helo_hostname,\n"
"    check_helo_access hash:/etc/postfix/access_helo,\n"
"    reject_rhsbl_helo multi.surbl.org"
msgstr ""
"\n"
"smtpd_client_restrictions = permit_mynetworks,\n"
"    warn_if_reject reject_unknown_client,\n"
"    check_client_access hash:/etc/postfix/access_clientip,\n"
"    reject_rbl_client sbl-xbl.spamhaus.org,\n"
"    reject_rbl_client list.dsbl.org"

msgid "The first <literal>permit_mynetworks</literal> directive allows all machines on the local network to introduce themselves freely. This is important, because some email programs do not respect this part of the SMTP protocol adequately enough, and they can introduce themselves with nonsensical names."
msgstr "Direktir <literal>permit_mynetworks</literal> pertama memungkinkan semua mesin di jaringan lokal untuk memperkenalkan diri dengan bebas. Hal ini penting, karena beberapa program email tidak menghormati bagian dari protokol SMTP ini secara cukup memadai, dan mereka dapat memperkenalkan diri dengan nama-nama yang tidak masuk akal."

#, fuzzy
#| msgid "<primary>printing</primary><secondary>network</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>permit_mynetworks</literal></secondary>"
msgstr "<primary>pencetakan</primary><secondary>jaringan</secondary>"

#, fuzzy
#| msgid "The <literal>reject_invalid_hostname</literal> rule rejects emails when the <literal>EHLO</literal> announce lists a syntactically incorrect hostname. The <literal>reject_non_fqdn_hostname</literal> rule rejects messages when the announced hostname is not a fully-qualified domain name (including a domain name as well as a host name). The <literal>reject_unknown_hostname</literal> rule rejects messages if the announced name does not exist in the DNS. Since this last rule unfortunately leads to too many rejections, the administrators turned its effect to a simple warning with the <literal>warn_if_reject</literal> modifier as a first step; they may decide to remove this modifier at a later stage, after auditing the results of this rule."
msgid "The <literal>reject_invalid_helo_hostname</literal> rule rejects emails when the <literal>EHLO</literal> announce lists a syntactically incorrect hostname. The <literal>reject_non_fqdn_helo_hostname</literal> rule rejects messages when the announced hostname is not a fully-qualified domain name (including a domain name as well as a host name). The <literal>reject_unknown_helo_hostname</literal> rule rejects messages if the announced name does not exist in the DNS. Since this last rule unfortunately leads to too many rejections, the administrators turned its effect to a simple warning with the <literal>warn_if_reject</literal> modifier as a first step; they may decide to remove this modifier at a later stage, after auditing the results of this rule."
msgstr "Aturan <literal>reject_invalid_hostname</literal> menolak surel ketika <literal>EHLO</literal> mengumumkan daftar nama host yang secara sintaksis salah. Aturan <literal>reject_non_fqdn_hostname</literal> menolak pesan ketika nama host yang diumumkan bukan fully-qualified domain name (yang memuat nama domain maupun nama host). Aturan <literal>reject_unknown_hostname</literal> menolak pesan jika nama yang diumumkan tidak ada di DNS. Karena aturan terakhir ini sayangnya mengarah ke penolakan yang terlalu banyak, para administrator mengubah efeknya menjadi peringatan sederhana dengan pengubah <literal>warn_if_reject</literal> sebagai langkah pertama; mereka mungkin memutuskan untuk menghapus pengubah ini pada tahap berikutnya, setelah audit hasil peraturan ini."

#, fuzzy
#| msgid "<primary>logs</primary><secondary>web logs analyzer</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>reject_invalid_helo_hostname</literal></secondary>"
msgstr "<primary>log</primary><secondary>penganalisis log web</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the sender</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>reject_non_fqdn_helo_hostname</literal></secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan pada pengirim</secondary>"

#, fuzzy
#| msgid "<primary>logs</primary><secondary>web logs analyzer</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>reject_unknown_helo_hostname</literal></secondary>"
msgstr "<primary>log</primary><secondary>penganalisis log web</secondary>"

msgid "The <literal>reject_rhsbl_helo</literal> allows to specify a black list to check the hostname against an RHSBL."
msgstr ""

#, fuzzy
#| msgid "Using <literal>permit_mynetworks</literal> as the first rule has an interesting side effect: the following rules only apply to hosts outside the local network. This allows blacklisting all hosts that announce themselves as part of the <literal>falcot.com</literal>, for instance by adding a <literal>falcot.com REJECT You are not in our network!</literal> line to the <filename>/etc/postfix/access_helo</filename> file."
msgid "Using <literal>permit_mynetworks</literal> as the first rule has an interesting side effect: the following rules only apply to hosts outside the local network. This allows blacklisting all hosts that announce themselves as part of the <literal>falcot.com</literal> network, for instance by adding a <literal>falcot.com REJECT You are not in our network!</literal> line to the <filename>/etc/postfix/access_helo</filename> file."
msgstr "Menggunakan <literal>permit_mynetworks</literal> sebagai aturan pertama memiliki efek samping yang menarik: aturan berikutnya hanya diterapkan ke host di luar jaringan lokal. Hal ini memungkinkan mencekal semua host yang mengumumkan diri mereka sebagai bagian dari <literal>falcot.com</literal>, misalnya dengan menambahkan baris <literal>falcot.com REJECT Anda tidak berada dalam jaringan kami!</literal> ke dalam berkas <filename>/ postfix/dll/access_helo</filename>."

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>check_helo_access</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

msgid "Accepting or Refusing Based on the Announced Sender"
msgstr "Menerima atau Menolak Berdasarkan Pengirim yang Diumumkan"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>smtpd_sender_restrictions</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

msgid "<primary>email</primary><secondary>filtering on the sender</secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan pada pengirim</secondary>"

msgid "Every message has a sender, announced by the <literal>MAIL FROM</literal> command of the SMTP protocol; again, this information can be validated in several different ways."
msgstr "Setiap pesan memiliki pengirim, diumumkan oleh perintah <literal>MAIL FROM</literal> dari protokol SMTP; sekali lagi, informasi ini dapat divalidasi dalam beberapa cara yang berbeda."

msgid "<primary><literal>MAIL FROM</literal></primary>"
msgstr "<primary><literal>MAIL FROM</literal></primary>"

#, fuzzy
#| msgid "<primary>server</primary><secondary>MX</secondary>"
msgid "<primary><literal>SMTP</literal></primary><secondary>MAIL FROM</secondary>"
msgstr "<primary>peladen</primary><secondary>MX</secondary>"

msgid "Sender checks"
msgstr "Pemeriksaan pengirim"

#, fuzzy
#| msgid ""
#| "\n"
#| "smtpd_sender_restrictions = \n"
#| "    check_sender_access hash:/etc/postfix/access_sender,\n"
#| "    reject_unknown_sender_domain, reject_unlisted_sender,\n"
#| "    reject_non_fqdn_sender"
msgid ""
"\n"
"smtpd_sender_restrictions =\n"
"    check_sender_access hash:/etc/postfix/access_sender,\n"
"    reject_unknown_sender_domain,\n"
"    reject_unlisted_sender,\n"
"    reject_non_fqdn_sender,\n"
"    reject_rhsbl_sender rhsbl.sorbs.net"
msgstr ""
"\n"
"smtpd_sender_restrictions = \n"
"    check_sender_access hash:/etc/postfix/access_sender,\n"
"    reject_unknown_sender_domain, reject_unlisted_sender,\n"
"    reject_non_fqdn_sender"

msgid "The <filename>/etc/postfix/access_sender</filename> table maps some special treatment to some senders. This usually means listing some senders into a white list or a black list."
msgstr "Tabel <filename>/etc/postfix/access_sender</filename> memetakan beberapa perlakuan khusus untuk beberapa pengirim. Ini biasanya berarti memasukkan beberapa pengirim ke daftar putih atau daftar hitam."

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>check_sender_access</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

msgid "The <literal>reject_unknown_sender_domain</literal> rule requires a valid sender domain, since it is needed for a valid address. The <literal>reject_unlisted_sender</literal> rule rejects local senders if the address does not exist; this prevents emails from being sent from an invalid address in the <literal>falcot.com</literal> domain, and messages emanating from <literal>joe.bloggs@falcot.com</literal> are only accepted if such an address really exists."
msgstr "Aturan <literal>reject_unknown_sender_domain</literal> memerlukan domain pengirim yang valid, karena dibutuhkan untuk alamat yang valid. Aturan <literal>reject_unlisted_sender</literal> menolak pengirim lokal jika alamat tidak ada; hal ini mencegah surel dari yang dikirim dari alamat yang tidak valid dalam domain <literal>falcot.com</literal>, dan pesan yang berasal dari <literal>joe.bloggs@falcot.com</literal> hanya diterima jika alamat tersebut benar-benar ada."

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the sender</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>reject_unknown_sender_domain</literal></secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan pada pengirim</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the sender</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>reject_unlisted_sender</literal></secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan pada pengirim</secondary>"

msgid "Finally, the <literal>reject_non_fqdn_sender</literal> rule rejects emails purporting to come from addresses without a fully-qualified domain name. In practice, this means rejecting emails coming from <literal>user@machine</literal>: the address must be announced as either <literal>user@machine.example.com</literal> or <literal>user@example.com</literal>."
msgstr "Akhirnya, aturan <literal>reject_non_fqdn_sender</literal> menolak surel yang mengaku berasal dari alamat tanpa fully-qualified domain name. Dalam prakteknya, ini berarti menolak surel yang datang dari <literal>user@machine</literal>: alamat harus diumumkan sebagai <literal>user@machine.example.com</literal> atau <literal>user@example.com</literal>."

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the sender</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>reject_non_fqdn_sender</literal></secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan pada pengirim</secondary>"

msgid "The <literal>reject_rhsbl_sender</literal> rule reject senders based on a (domain-based) RHSBL service."
msgstr ""

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>reject_rhsbl_sender</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

msgid "Accepting or Refusing Based on the Recipient"
msgstr "Menerima atau Menolak Berdasarkan Penerima"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the recipient</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>smtpd_recipient_restrictions</literal></secondary>"
msgstr "<primary>surel</primary><secondary>penyaringan pada penerima</secondary>"

msgid "<primary>email</primary><secondary>filtering on the recipient</secondary>"
msgstr "<primary>surel</primary><secondary>penyaringan pada penerima</secondary>"

msgid "Each email has at least one recipient, announced with the <literal>RCPT TO</literal> command in the SMTP protocol. These addresses also warrant validation, even if that may be less relevant than the checks made on the sender address."
msgstr "Setiap surel yang memiliki minimal satu penerima, diumumkan dengan perintah <literal>RCPT TO</literal> dalam protokol SMTP. Alamat ini juga memerlukan validasi, bahkan jika itu mungkin kurang relevan daripada pemeriksaan atas alamat pengirim."

msgid "<primary>RCPT TO</primary>"
msgstr "<primary>RCPT TO</primary>"

msgid "Recipient checks"
msgstr "Pemeriksaan penerima"

#, fuzzy
#| msgid ""
#| "\n"
#| "smtpd_recipient_restrictions = permit_mynetworks, \n"
#| "    reject_unauth_destination, reject_unlisted_recipient, \n"
#| "    reject_non_fqdn_recipient"
msgid ""
"\n"
"smtpd_recipient_restrictions =\n"
"    permit_mynetworks,\n"
"    reject_unauth_destination,\n"
"    reject_unlisted_recipient,\n"
"    reject_non_fqdn_recipient,\n"
"    permit"
msgstr ""
"\n"
"smtpd_recipient_restrictions = permit_mynetworks, \n"
"    reject_unauth_destination, reject_unlisted_recipient, \n"
"    reject_non_fqdn_recipient"

msgid "<literal>reject_unauth_destination</literal> is the basic rule that requires outside messages to be addressed to us; messages sent to an address not served by this server are rejected. Without this rule, a server becomes an open relay that allows spammers to send unsolicited emails; this rule is therefore mandatory, and it will be best included near the beginning of the list, so that no other rules may authorize the message before its destination has been checked."
msgstr "<literal>reject_unauth_destination</literal> adalah aturan dasar yang mempersyaratkan pesan dari luar ditujukan kepada kami; pesan yang dikirim ke alamat yang tidak dilayani oleh server ini akan ditolak. Tanpa aturan ini, server menjadi relay terbuka yang memungkinkan spammer untuk mengirim surel yang tidak diinginkan; aturan ini wajib, dan itu paling baik disertakan di bagian awal dari daftar, sehingga tidak ada aturan lainnya mungkin mengotorisasi pesan sebelum tujuan telah diperiksa."

#, fuzzy
#| msgid "<primary>domain</primary><secondary>virtual</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>reject_unauth_destination</literal></secondary>"
msgstr "<primary>domain</primary><secondary>virtual</secondary>"

msgid "The <literal>reject_unlisted_recipient</literal> rule rejects messages sent to non-existing local users, which makes sense. Finally, the <literal>reject_non_fqdn_recipient</literal> rule rejects non-fully-qualified addresses; this makes it impossible to send an email to <literal>jean</literal> or <literal>jean@machine</literal>, and requires using the full address instead, such as <literal>jean@machine.falcot.com</literal> or <literal>jean@falcot.com</literal>."
msgstr "Aturan <literal>reject_unlisted_recipient</literal> menolak pesan yang dikirim ke pengguna lokal yang tidak ada. Ini masuk akal. Akhirnya, aturan <literal>reject_non_fqdn_recipient</literal> menolak alamat yang bukan fully-qualified; ini menjadikannya mustahil untuk mengirim surel ke <literal>jean</literal> atau <literal>jean@machine</literal>, dan memerlukan menggunakan alamat lengkap, seperti <literal>jean@machine.falcot.com</literal> atau <literal>jean@falcot.com</literal>."

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the recipient</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>reject_unlisted_recipient</literal></secondary>"
msgstr "<primary>surel</primary><secondary>penyaringan pada penerima</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the recipient</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>reject_non_fqdn_recipient</literal></secondary>"
msgstr "<primary>surel</primary><secondary>penyaringan pada penerima</secondary>"

msgid "The <literal>permit</literal> directive at the end is not necessary. But it can be useful at the end of a restriction list to make the default policy explicit."
msgstr ""

msgid "Restrictions Associated with the <literal>DATA</literal> Command"
msgstr "Pembatasan Terkait dengan Perintah <literal>DATA</literal>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>smtpd_data_restrictions</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on contents</secondary>"
msgid "<primary>email</primary><secondary>filtering on SMTP commands</secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan pada isi</secondary>"

msgid "The <literal>DATA</literal> command of SMTP is emitted before the contents of the message. It doesn't provide any information per se, apart from announcing what comes next. It can still be subjected to checks."
msgstr "Perintah <literal>DATA</literal> SMTP dikirimkan sebelum isi pesan. Tidak memberikan informasi apapun per se, selain mengumumkan apa yang datang berikutnya. Masih bisa dipersyaratkan untuk pemeriksaan."

msgid "<primary><literal>DATA</literal></primary>"
msgstr "<primary><literal>DATA</literal></primary>"

#, fuzzy
#| msgid "<primary>server</primary><secondary>SMTP</secondary>"
msgid "<primary><literal>SMTP</literal></primary><secondary>DATA</secondary>"
msgstr "<primary>peladen</primary><secondary>SMTP</secondary>"

msgid "<literal>DATA</literal> checks"
msgstr "Pemeriksaan <literal>DATA</literal>"

#, fuzzy
#| msgid ""
#| "\n"
#| "smtpd_data_restrictions = reject_unauth_pipelining"
msgid "smtpd_data_restrictions = reject_unauth_pipelining"
msgstr ""
"\n"
"smtpd_data_restrictions = reject_unauth_pipelining"

msgid "The <literal>reject_unauth_pipelining</literal> directives causes the message to be rejected if the sending party sends a command before the reply to the previous command has been sent. This guards against a common optimization used by spammer robots, since they usually don't care a fig about replies and only focus on sending as many emails as possible in as short a time as possible."
msgstr "Direktif <literal>reject_unauth_pipelining</literal> menyebabkan pesan ditolak jika pihak pengirim mengirim perintah sebelum balasan atas perintah sebelumnya dikirim. Ini penjaga terhadap optimasi yang umum digunakan oleh robot spammer, karena mereka biasanya tidak peduli isi balasan dan fokus hanya pada mengirim surel sebanyak mungkin dalam waktu sependek mungkin."

#, fuzzy
#| msgid "<primary>domain</primary><secondary>virtual</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>reject_unauth_pipelining</literal></secondary>"
msgstr "<primary>domain</primary><secondary>virtual</secondary>"

msgid "Applying Restrictions"
msgstr "Menerapkan Pembatasan"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>smtpd_delay_reject</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "Although the above commands validate information at various stages of the SMTP exchange, Postfix only sends the actual rejection as a reply to the <literal>RCPT TO</literal> command."
msgid "Although the above commands validate information at various stages of the SMTP exchange, Postfix sends the actual rejection as a reply to the <literal>RCPT TO</literal> command by default."
msgstr "Meskipun perintah di atas memvalidasi informasi di berbagai tahap pertukaran SMTP, Postfix hanya mengirimkan penolakan sebenarnya sebagai jawaban atas perintah <literal>RCPT TO</literal>."

msgid "This means that even if the message is rejected due to an invalid <literal>EHLO</literal> command, Postfix knows the sender and the recipient when announcing the rejection. It can then log a more explicit message than it could if the transaction had been interrupted from the start. In addition, a number of SMTP clients do not expect failures on the early SMTP commands, and these clients will be less disturbed by this late rejection."
msgstr "Ini berarti bahwa bahkan jika pesan tersebut ditolak karena perintah <literal>EHLO</literal> yang tidak valid, Postfix tahu pengirim dan penerima ketika mengumumkan penolakan. Ini kemudian mencatat log pesan yang lebih eksplisit daripada yang bisa dilakukan jika transaksi telah terputus dari awal. Selain itu, sejumlah klien SMTP tidak mengharapkan kegagalan pada perintah SMTP awal, dan klien ini akan kurang terganggu oleh penolakan akhir ini."

msgid "A final advantage to this choice is that the rules can accumulate information during the various stages of the SMTP exchange; this allows defining more fine-grained permissions, such as rejecting a non-local connection if it announces itself with a local sender."
msgstr "Keuntungan akhir pilihan ini adalah bahwa aturan dapat mengumpulkan informasi selama berbagai tahap pertukaran SMTP; hal ini memungkinkan mendefinisikan izin lebih halus, seperti menolak koneksi non-lokal jika itu mengumumkan dirinya dengan pengirim lokal."

msgid "The default behavior is controlled by the <literal>smtpd_delay_reject</literal> rule."
msgstr ""

msgid "Filtering Based on the Message Contents"
msgstr "Penyaringan Berdasarkan Isi Pesan"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on contents</secondary>"
msgid "<primary>email</primary><secondary>filtering on content inspection</secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan pada isi</secondary>"

msgid "<primary>email</primary><secondary>filtering on contents</secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan pada isi</secondary>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>body_checks</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>header_checks</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

msgid "The validation and restriction system would not be complete without a way to apply checks to the message contents. Postfix differentiates the checks applying to the email headers from those applying to the email body."
msgstr "Sistem validasi dan pembatasan tidak akan lengkap tanpa cara untuk menerapkan pemeriksaan ke isi pesan. Postfix membedakan pemeriksaan yang berlaku ke header surel dari mereka yang berlaku ke tubuh surel."

msgid "Enabling content-based filters"
msgstr "Memfungsikan penyaring berbasis konten"

msgid ""
"\n"
"header_checks = regexp:/etc/postfix/header_checks\n"
"body_checks = regexp:/etc/postfix/body_checks"
msgstr ""
"\n"
"header_checks = regexp:/etc/postfix/header_checks\n"
"body_checks = regexp:/etc/postfix/body_checks"

msgid "Both files contain a list of regular expressions (commonly known as <emphasis>regexps</emphasis> or <emphasis>regexes</emphasis>) and associated actions to be triggered when the email headers (or body) match the expression."
msgstr "Kedua berkas berisi daftar ekspresi reguler (umumnya dikenal sebagai <emphasis>regexps</emphasis> atau <emphasis>regexes</emphasis>) dan tindakan menjadi dipicu ketika header surel (atau tubuh) cocok dengan ekspresi yang terkait."

msgid "<emphasis>QUICK LOOK</emphasis> Regexp tables"
msgstr "<emphasis>LIHAT CEPAT</emphasis> Tabel regex"

#, fuzzy
#| msgid "The <filename>/usr/share/doc/postfix-doc/examples/header_checks.gz</filename> file contains many explanatory comments and can be used as a starting point for creating the <filename>/etc/postfix/header_checks</filename> and <filename>/etc/postfix/body_checks</filename> files."
msgid "The file <filename>/usr/share/doc/postfix/examples/header_checks.gz</filename> (from the <emphasis role=\"pkg\">postfix-doc</emphasis> package) and <citerefentry><refentrytitle>header_checks</refentrytitle><manvolnum>5</manvolnum></citerefentry> contain many explanatory comments and can be used as a starting point for creating the <filename>/etc/postfix/header_checks</filename> and <filename>/etc/postfix/body_checks</filename> files."
msgstr "Berkas <filename>/usr/share/doc/postfix-doc/examples/header_checks.gz</filename> berisi banyak komentar penjelasan dan dapat digunakan sebagai titik awal untuk membuat berkas <filename>/etc/postfix/header_checks</filename> dan <filename>/etc/postfix /body_checks</filename>."

msgid "Example <filename>/etc/postfix/header_checks</filename> file"
msgstr "Berkas contoh <filename>/etc/postfix/header_checks</filename>"

msgid ""
"\n"
"/^X-Mailer: GOTO Sarbacane/ REJECT I fight spam (GOTO Sarbacane)\n"
"/^Subject: *Your email contains VIRUSES/ DISCARD virus notification"
msgstr ""
"\n"
"/^X-Mailer: GOTO Sarbacane/ REJECT I fight spam (GOTO Sarbacane)\n"
"/^Subject: *Your email contains VIRUSES/ DISCARD virus notification"

msgid "<emphasis>BACK TO BASICS</emphasis> Regular expression"
msgstr "<emphasis>KEMBALI KE DASAR</emphasis> Ekspresi reguler"

#, fuzzy
#| msgid "<primary>repro</primary>"
msgid "<primary>regular expressions</primary>"
msgstr "<primary>repro</primary>"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>options</secondary>"
msgid "<primary>regex</primary><see>regular expressions</see>"
msgstr "<primary>NFS</primary><secondary>opsi</secondary>"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>options</secondary>"
msgid "<primary>regexp</primary><see>regular expressions</see>"
msgstr "<primary>NFS</primary><secondary>opsi</secondary>"

#, fuzzy
#| msgid "The <emphasis>regular expression</emphasis> term (shortened to <emphasis>regexp</emphasis> or <emphasis>regex</emphasis>) references a generic notation for expressing a description of the contents and/or structure of a string of characters. Certain special characters allow defining alternatives (for instance, <literal>foo|bar</literal> matches either “foo” or “bar”), sets of allowed characters (for instance, <literal>[0-9]</literal> means any digit, and <literal>.</literal> — a dot — means any character), quantifications (<literal>s?</literal> matches either <literal>s</literal> or the empty string, in other words 0 or 1 occurrence of <literal>s</literal>; <literal>s+</literal> matches one or more consecutive <literal>s</literal> characters; and so on). Parentheses allow grouping search results."
msgid "The <emphasis>regular expression</emphasis> term (shortened to <emphasis>regexp</emphasis> or <emphasis>regex</emphasis>) references a generic notation for expressing a description of the contents and/or structure of a string of characters. Certain special characters allow defining alternatives (for instance, <literal>foo|bar</literal> matches either “foo” or “bar”), sets of allowed characters (for instance, <literal>[0-9]</literal> means \"any digit\", and <literal>.</literal> — a dot — means \"any character\"), quantification (<literal>s?</literal> matches either <literal>s</literal> or the empty string, in other words 0 or 1 occurrence of <literal>s</literal>; <literal>s+</literal> matches one or more consecutive <literal>s</literal> characters; and so on). Parentheses allow grouping search results."
msgstr "Istilah <emphasis>ekspresi reguler</emphasis> (disingkat menjadi <emphasis>regexp</emphasis> atau <emphasis>regex</emphasis>) mengacu ke notasi generik untuk mengekspresikan deskripsi dari isi dan/atau struktur serangkaian karakter. Karakter khusus tertentu memungkinkan mendefinisikan alternatif (misalnya, <literal>foo|bar</literal> cocok dengan \"foo\" atau \"bar\"), set karakter yang diizinkan (misalnya, <literal>[0-9]</literal> berarti setiap digit, dan <literal>.</literal> — dot — berarti sebarang karakter), kuantifikasi (<literal>s?</literal> cocok dengan <literal>s</literal> atau string kosong, dengan kata lain 0 atau 1 kali munculnya <literal>s</literal>; <literal>s+</literal> cocok dengan satu atau lebih karakter <literal>s</literal> berturut-turut; dan seterusnya). Kurung memungkinkan pengelompokan hasil pencarian."

#, fuzzy
#| msgid "The precise syntax of these expressions varies across the tools using them, but the basic features are similar. <ulink type=\"block\" url=\"http://en.wikipedia.org/wiki/Regular_expression\" />"
msgid "The precise syntax of these expressions varies across the tools using them, but the basic features are similar. <ulink type=\"block\" url=\"https://en.wikipedia.org/wiki/Regular_expression\" />"
msgstr "Sintaks yang tepat dari ungkapan-ungkapan ini bervariasi di seluruh alat yang menggunakan mereka, tapi fitur dasarnya sama. <ulink type=\"block\" url=\"http://en.wikipedia.org/wiki/Regular_expression\" />"

msgid "The first one checks the header mentioning the email software; if <literal>GOTO Sarbacane</literal> (a bulk email software) is found, the message is rejected. The second expression controls the message subject; if it mentions a virus notification, we can decide not to reject the message but to discard it immediately instead."
msgstr "Yang pertama memeriksa header yang menyebutkan perangkat lunak surel; jika <literal>GOTO Sarbacane</literal> (software surel massal) ditemukan, pesan tersebut akan ditolak. Ekspresi kedua mengendalikan subjek pesan; jika itu menyebutkan pemberitahuan virus, kita bisa memutuskan untuk tidak menolak pesan tetapi untuk membuangnya segera sebagai gantinya."

msgid "Using these filters is a double-edged sword, because it is easy to make the rules too generic and to lose legitimate emails as a consequence. In these cases, not only the messages will be lost, but their senders will get unwanted (and annoying) error messages."
msgstr "Menggunakan filter ini adalah pedang bermata dua, karena mudah untuk membuat aturan yang terlalu generik dan kehilangan surel yang sah sebagai akibatnya. Dalam kasus ini, tidak hanya pesan akan hilang, tapi pengirimnya akan mendapatkan pesan kesalahan yang tidak diinginkan (dan menjengkelkan)."

msgid "Setting Up <foreignphrase>greylisting</foreignphrase>"
msgstr "Menyiapkan <foreignphrase>greylisting</foreignphrase>"

msgid "<primary>greylisting</primary>"
msgstr "<primary>greylisting</primary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering</secondary>"
msgid "<primary>email</primary><secondary>greylisting</secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan</secondary>"

#, fuzzy
#| msgid "<primary><emphasis role=\"pkg\">vsftpd</emphasis></primary>"
msgid "<primary><emphasis role=\"pkg\">postgrey</emphasis></primary>"
msgstr "<primary><emphasis role=\"pkg\">vsftpd</emphasis></primary>"

msgid "“Greylisting” is a filtering technique according to which a message is initially rejected with a temporary error code, and only accepted on a further try after some delay. This filtering is particularly efficient against spam sent by the many machines infected by worms and viruses, since this software rarely acts as a full SMTP agent (by checking the error code and retrying failed messages later), especially since many of the harvested addresses are really invalid and retrying would only mean losing time."
msgstr "\"Greylisting\" adalah teknik penyaringan yang pesan awalnya ditolak dengan kode kesalahan sementara, dan hanya diterima pada percobaan lebih lanjut setelah penundaan. Hal ini sangat efisien terhadap spam yang dikirim oleh banyak mesin yang terinfeksi oleh virus dan worm karena software ini jarang bertindak sebagai agen SMTP penuh (dengan memeriksa kode kesalahan dan mencoba kembali pesan gagal kemudian), terutama karena banyak dari alamat yang dipanen sebenarnya tidak sah dan mencoba kembali berarti kehilangan waktu."

msgid "Postfix doesn't provide greylisting natively, but there is a feature by which the decision to accept or reject a given message can be delegated to an external program. The <emphasis role=\"pkg\">postgrey</emphasis> package contains just such a program, designed to interface with this access policy delegation service."
msgstr "Postfix tidak menyediakan greylist secara native, tapi ada fitur dimana keputusan untuk menerima atau menolak pesan tertentu dapat diserahkan ke program eksternal. Paket <emphasis role=\"pkg\">postgrey</emphasis> memuat program seperti itu, dirancang untuk berinteraksi dengan layanan delegasi kebijakan akses ini."

msgid "Once <emphasis role=\"pkg\">postgrey</emphasis> is installed, it runs as a daemon and listens on port 10023. Postfix can then be configured to use it, by adding the <literal>check_policy_service</literal> parameter as an extra restriction:"
msgstr "Setelah <emphasis role=\"pkg\">postgrey</emphasis> terinstal, itu berjalan sebagai daemon dan mendengarkan pada port 10023. Postfix kemudian dapat dikonfigurasi untuk menggunakannya, dengan menambahkan parameter <literal>check_policy_service</literal> sebagai pembatasan tambahan:"

#, fuzzy
#| msgid ""
#| "\n"
#| "smtpd_recipient_restrictions = permit_mynetworks,\n"
#| "    [...]\n"
#| "    check_policy_service inet:127.0.0.1:10023"
msgid ""
"\n"
"smtpd_recipient_restrictions =\n"
"    permit_mynetworks,\n"
"    [...]\n"
"    check_policy_service inet:127.0.0.1:10023"
msgstr ""
"\n"
"smtpd_recipient_restrictions = permit_mynetworks,\n"
"    [...]\n"
"    check_policy_service inet:127.0.0.1:10023"

msgid "Each time Postfix reaches this rule in the ruleset, it will connect to the <command>postgrey</command> daemon and send it information concerning the relevant message. On its side, Postgrey considers the IP address/sender/recipient triplet and checks in its database whether that same triplet has been seen recently. If so, Postgrey replies that the message should be accepted; if not, the reply indicates that the message should be temporarily rejected, and the triplet gets recorded in the database."
msgstr "Setiap kali Postfix mencapai aturan ini dalam set aturan, itu akan menyambung ke daemon <command>postgrey</command> dan mengirim informasi mengenai pesan yang relevan. Pada sisinya, Postgrey mempertimbangkan triplet alamat IP/pengirim/penerima triplet dan memeriksa basis data apakah triplet yang sama telah terlihat baru-baru ini. Jika demikian, Postgrey menjawab bahwa pesan harus diterima; jika tidak, jawaban menunjukkan bahwa pesan harus ditolak untuk sementara, dan triplet dicatat dalam basis data."

msgid "The main disadvantage of greylisting is that legitimate messages get delayed, which is not always acceptable. It also increases the burden on servers that send many legitimate emails."
msgstr "Kelemahan utama dari greylist adalah bahwa pesan yang sah tertunda, yang tidak selalu bisa diterima. Hal ini juga meningkatkan beban pada server yang mengirim banyak surel yang sah."

msgid "<emphasis>IN PRACTICE</emphasis> Shortcomings of greylisting"
msgstr "<emphasis>DALAM PRAKTEK</emphasis> Kekurangan dari greylisting"

msgid "Theoretically, greylisting should only delay the first mail from a given sender to a given recipient, and the typical delay is in the order of minutes. Reality, however, can differ slightly. Some large ISPs use clusters of SMTP servers, and when a message is initially rejected, the server that retries the transmission may not be the same as the initial one. When that happens, the second server gets a temporary error message due to greylisting too, and so on; it may take several hours until transmission is attempted by a server that has already been involved, since SMTP servers usually increase the delay between retries at each failure."
msgstr "Secara teori, greylist hanya harus menunda surat pertama dari pengirim yang diberikan kepada penerima tertentu, dan penundaan umumnya dalam orde menit. Kenyataannya, bagaimanapun, dapat sedikit berbeda. Beberapa ISP besar menggunakan cluster server SMTP, dan ketika pesan awalnya ditolak, server yang mencoba ulang transmisi mungkin tidak akan sama seperti yang pertama. Ketika itu terjadi, kedua server mendapat pesan kesalahan sementara karena greylist, dan seterusnya; mungkin butuh beberapa jam sampai transmisi ini dicoba oleh server yang sudah telah terlibat, karena server SMTP biasanya meningkatkan penundaan antara pengulangan di setiap kegagalan."

msgid "As a consequence, the incoming IP address may vary in time even for a single sender. But it goes further: even the sender address can change. For instance, many mailing-list servers encode extra information in the sender address so as to be able to handle error messages (known as <emphasis>bounces</emphasis>). Each new message sent to a mailing-list may then need to go through greylisting, which means it has to be stored (temporarily) on the sender's server. For very large mailing-lists (with tens of thousands of subscribers), this can soon become a problem."
msgstr "Sebagai akibatnya, alamat IP yang masuk dapat bervariasi dengan berjalannya waktu bahkan untuk pengirim tunggal. Tapi lebih jauh lagi: bahkan alamat pengirim dapat berubah. Sebagai contoh, banyak milis server menyandikan tambahan informasi dalam alamat pengirim untuk dapat menangani pesan kesalahan (dikenal sebagai <emphasis>bounces</emphasis>). Setiap pesan baru yang dikirim ke milis kemudian mungkin perlu pergi melalui greylist, yang berarti itu harus disimpan (secara sementara) pada server pengirim. Untuk milis yang sangat besar (dengan puluhan ribu pelanggan), ini dapat segera menjadi masalah."

msgid "To mitigate these drawbacks, Postgrey manages a whitelist of such sites, and messages emanating from them are immediately accepted without going through greylisting. This list can easily be adapted to local needs, since it is stored in the <filename>/etc/postgrey/whitelist_clients</filename> file."
msgstr "Untuk memitigasi kelemahan ini, Postgrey mengelola daftar putih dari situs-situs seperti itu, dan pesan yang berasal dari mereka segera diterima tanpa melalui greulist. Daftar ini dengan mudah dapat disesuaikan dengan kebutuhan lokal, karena disimpan dalam berkas <filename>/etc/postgrey/whitelist_clients</filename>."

msgid "<emphasis>GOING FURTHER</emphasis> Selective greylisting with <emphasis role=\"pkg\">milter-greylist</emphasis>"
msgstr "<emphasis>LEBIH LANJUT</emphasis> Greylisting selektif dengan <emphasis role=\"pkg\">milter-greylist</emphasis>"

#, fuzzy
#| msgid "<primary><emphasis role=\"pkg\">spamass-milter</emphasis></primary>"
msgid "<primary><emphasis role=\"pkg\">milter-greylist</emphasis></primary>"
msgstr "<primary><emphasis role=\"pkg\">spamass-milter</emphasis></primary>"

msgid "The drawbacks of greylisting can be mitigated by only using greylisting on the subset of clients that are already considered as probable sources of spam (because they are listed in a DNS blacklist). This is not possible with <emphasis role=\"pkg\">postgrey</emphasis> but <emphasis role=\"pkg\">milter-greylist</emphasis> can be used in such a way."
msgstr "Kelemahan dari greylist dapat dimitigsai dengan hanya menggunakan greylist pada subset dari klien yang sudah dianggap sebagai kemungkinan sumber spam (karena mereka tercantum dalam daftar hitam DNS). Hal ini tidak mungkin dengan <emphasis role=\"pkg\">postgrey</emphasis> tapi <emphasis role=\"pkg\">milter-greylist</emphasis> dapat digunakan dengan cara itu."

msgid "In that scenario, since DNS blacklists never triggers a definitive rejection, it becomes reasonable to use aggressive blacklists, including those listing all dynamic IP addresses from ISP clients (such as <literal>pbl.spamhaus.org</literal> or <literal>dul.dnsbl.sorbs.net</literal>)."
msgstr "Dalam skenario itu, karena blacklist DNS tidak pernah memicu penolakan definitif, menjadi masuk akal untuk menggunakan blacklist agresif, termasuk daftar semua alamat IP dinamis dari klien ISP (seperti <literal>pbl.spamhaus.org</literal> atau <literal>dul.dnsbl.Sorbs.net</literal>)."

#, fuzzy
#| msgid "Since milter-greylist uses Sendmail's milter interface, the postfix side of its configuration is limited to “<literal>smtpd_milters = unix:/var/run/milter-greylist/milter-greylist.sock</literal>”. The <citerefentry><refentrytitle>greylist.conf</refentrytitle><manvolnum>5</manvolnum></citerefentry> manual page documents <filename>/etc/milter-greylist/greylist.conf</filename> and the numerous ways to configure milter-greylist. You will also have to edit <filename>/etc/default/milter-greylist</filename> to actually enable the service."
msgid "Since <emphasis role=\"pkg\">milter-greylist</emphasis> uses Sendmail's milter interface, the postfix side of its configuration is limited to “<literal>smtpd_milters = unix:/var/run/milter-greylist/milter-greylist.sock</literal>”. The <citerefentry><refentrytitle>greylist.conf</refentrytitle><manvolnum>5</manvolnum></citerefentry> manual page documents <filename>/etc/milter-greylist/greylist.conf</filename> and the numerous ways to configure milter-greylist. You will also have to edit <filename>/etc/default/milter-greylist</filename> to actually enable the service."
msgstr "Karena milter-greylist menggunakan antarmuka milter Sendmail, konfigurasi sisi postfix-nya terbatas ke \"<literal>smtpd_milters = unix:/var/run/milter-greylist/milter-greylist.sock</literal>\". Halaman manual <citerefentry><refentrytitle>greylist.conf</refentrytitle><manvolnum>5</manvolnum></citerefentry> mendokumentasikan <filename>/etc/milter-greylist/greylist.conf</filename> dan banyak cara untuk mengkonfigurasi milter-greylist. Anda juga harus menyunting <filename>/etc/default/milter-greylist</filename> untuk benar-benar mengaktifkan layanan."

msgid "Customizing Filters Based On the Recipient"
msgstr "Mengubah Filter Berdasarkan Penerima"

#, fuzzy
#| msgid "<primary>email</primary><secondary>server</secondary>"
msgid "<primary>email</primary><secondary>custom restriction classes</secondary>"
msgstr "<primary>surel</primary><secondary>server</secondary>"

msgid "<xref linkend=\"sect.restrictions-for-receiving-and-sending\" /> and <xref linkend=\"sect.setting-up-greylisting\" /> reviewed many of the possible restrictions. They all have their use in limiting the amount of received spam, but they also all have their drawbacks. It is therefore more and more common to customize the set of filters depending on the recipient. At Falcot Corp, greylisting is interesting for most users, but it hinders the work of some users who need low latency in their emails (such as the technical support service). Similarly, the commercial service sometimes has problems receiving emails from some Asian providers who may be listed in blacklists; this service asked for a non-filtered address so as to be able to correspond."
msgstr "<xref linkend=\"sect.restrictions-for-receiving-and-sending\" /> dan <xref linkend=\"sect.setting-up-greylisting\" /> meninjau banyak kemungkinan pembatasan. Mereka semua memiliki kegunaan dalam membatasi jumlah spam yang diterima, tetapi mereka semua juga memiliki kelemahan. Maka semakin umum untuk menyesuaikan set filter tergantung pada penerima. Pada Falcot Corp, greylist menarik bagi sebagian pengguna, tapi mengganggu pekerjaan beberapa pengguna yang membutuhkan latensi rendah dalam surel mereka (seperti layanan dukungan teknis). Demikian pula, layanan komersial kadang-kadang memiliki masalah menerima surel dari beberapa penyedia Asia yang mungkin tercantum di daftar hitam; layanan ini meminta alamat tak tersaring untuk bisa berkorespondensi."

msgid "Postfix provides such a customization of filters with a “restriction class” concept. The classes are declared in the <literal>smtpd_restriction_classes</literal> parameter, and defined the same way as <literal>smtpd_recipient_restrictions</literal>. The <literal>check_recipient_access</literal> directive then defines a table mapping a given recipient to the appropriate set of restrictions."
msgstr "Postfix menyediakan kustomisasi filter dengan konsep \"kelas pembatasan\". Kelas dideklarasikan dalam parameter <literal>smtpd_restriction_classes</literal>, dan didefinisikan dengan cara yang sama sebagai <literal>smtpd_recipient_restrictions</literal>. Direktif <literal>check_recipient_access</literal> kemudian mendefinisikan tabel pemetaan penerima tertentu untuk seperangkat batasan."

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>smtpd_restriction_classes</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the recipient</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>check_recipient_access</literal></secondary>"
msgstr "<primary>surel</primary><secondary>penyaringan pada penerima</secondary>"

msgid "Defining restriction classes in <filename>main.cf</filename>"
msgstr "Mendefinisikan kelas pembatasan dalam <filename>main.cf</filename>"

#, fuzzy
#| msgid ""
#| "smtpd_restriction_classes = greylisting, aggressive, permissive\n"
#| "\n"
#| "greylisting = check_policy_service inet:127.0.0.1:10023\n"
#| "aggressive = reject_rbl_client sbl-xbl.spamhaus.org,\n"
#| "        check_policy_service inet:127.0.0.1:10023\n"
#| "permissive = permit\n"
#| "\n"
#| "smtpd_recipient_restrictions = permit_mynetworks,\n"
#| "        reject_unauth_destination,\n"
#| "        check_recipient_access hash:/etc/postfix/recipient_access"
msgid ""
"smtpd_restriction_classes = greylisting, aggressive, permissive\n"
"\n"
"greylisting = check_policy_service inet:127.0.0.1:10023\n"
"aggressive =\n"
"        reject_rbl_client sbl-xbl.spamhaus.org,\n"
"        check_policy_service inet:127.0.0.1:10023\n"
"permissive = permit\n"
"\n"
"smtpd_recipient_restrictions =\n"
"        permit_mynetworks,\n"
"        reject_unauth_destination,\n"
"        check_recipient_access hash:/etc/postfix/recipient_access"
msgstr ""
"smtpd_restriction_classes = greylisting, aggressive, permissive\n"
"\n"
"greylisting = check_policy_service inet:127.0.0.1:10023\n"
"aggressive = reject_rbl_client sbl-xbl.spamhaus.org,\n"
"        check_policy_service inet:127.0.0.1:10023\n"
"permissive = permit\n"
"\n"
"smtpd_recipient_restrictions = permit_mynetworks,\n"
"        reject_unauth_destination,\n"
"        check_recipient_access hash:/etc/postfix/recipient_access"

msgid "The <filename>/etc/postfix/recipient_access</filename> file"
msgstr "Berkas <filename>/etc/postfix/recipient_access</filename>"

msgid ""
"\n"
"# Unfiltered addresses\n"
"postmaster@falcot.com  permissive\n"
"support@falcot.com     permissive\n"
"sales-asia@falcot.com  permissive\n"
"\n"
"# Aggressive filtering for some privileged users\n"
"joe@falcot.com         aggressive\n"
"\n"
"# Special rule for the mailing-list manager\n"
"sympa@falcot.com       reject_unverified_sender\n"
"\n"
"# Greylisting by default\n"
"falcot.com             greylisting"
msgstr ""
"\n"
"# Unfiltered addresses\n"
"postmaster@falcot.com  permissive\n"
"support@falcot.com     permissive\n"
"sales-asia@falcot.com  permissive\n"
"\n"
"# Aggressive filtering for some privileged users\n"
"joe@falcot.com         aggressive\n"
"\n"
"# Special rule for the mailing-list manager\n"
"sympa@falcot.com       reject_unverified_sender\n"
"\n"
"# Greylisting by default\n"
"falcot.com             greylisting"

msgid "Integrating an Antivirus"
msgstr "Mengintegrasikan Antivirus"

msgid "<primary>antivirus</primary>"
msgstr "<primary>anti virus</primary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering</secondary>"
msgid "<primary>email</primary><secondary>virus scanning</secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan</secondary>"

msgid "The many viruses circulating as attachments to emails make it important to set up an antivirus at the entry point of the company network, since despite an awareness campaign, some users will still open attachments from obviously shady messages."
msgstr "Banyak virus yang beredar sebagai lampiran surel membuat penting untuk mengatur antivirus di titik entri jaringan perusahaan, karena meskipun sudah ada kampanye kesadaran, beberapa pengguna masih akan membuka lampiran dari pesan yang jelas-jelas mencurigakan."

#, fuzzy
#| msgid "<emphasis>SECURITY</emphasis> Access to statistics"
msgid "<emphasis>SECURITY</emphasis> Controversial Discussion of Anti-Virus Software"
msgstr "<emphasis>KEAMANAN</emphasis> Akses ke statistik"

msgid "The usage of virus scanners, or so called antivirus software, is controversial. There is usually a gap between the release of some piece of malware and the addition of detection rules to the antivirus database. During this gap, there is no software-based protection. Further, the usage often requires to run additional software, for example, to uncompress archives and scan all kinds of executables, which drastically increases the exploit potential of the antivirus software itself. Usage of such software solutions can therefor never replace awareness campaigns and simple behavioral rules (never open unsolicited sent attachments, etc.)."
msgstr ""

#, fuzzy
#| msgid "<primary>Chat</primary><secondary>server</secondary>"
msgid "<primary>antivirus</primary><secondary>controversy</secondary>"
msgstr "<primary>Chat</primary><secondary>server</secondary>"

msgid "The Falcot administrators selected <command>clamav</command> for their free antivirus. The main package is <emphasis role=\"pkg\">clamav</emphasis>, but they also installed a few extra packages such as <emphasis role=\"pkg\">arj</emphasis>, <emphasis role=\"pkg\">unzoo</emphasis>, <emphasis role=\"pkg\">unrar</emphasis> and <emphasis role=\"pkg\">lha</emphasis>, since they are required for the antivirus to analyze attachments archived in one of these formats."
msgstr "Para administrator Falcot memilih <command>clamav</command> untuk antivirus gratis mereka. Paket utama adalah <emphasis role=\"pkg\">clamav</emphasis>, tetapi mereka juga memasang beberapa paket tambahan seperti <emphasis role=\"pkg\">arj</emphasis>, <emphasis role=\"pkg\">unzoo</emphasis>, <emphasis role=\"pkg\">unrar</emphasis>, dan <emphasis role=\"pkg\">lha</emphasis>, karena mereka diperlukan oleh antivirus untuk menganalisis lampiran yang diarsipkan dalam salah satu format ini."

msgid "<primary><command>clamav</command></primary>"
msgstr "<primary><command>clamav</command></primary>"

msgid "<primary><command>clamav-milter</command></primary>"
msgstr "<primary><command>clamav-milter</command></primary>"

msgid "The task of interfacing between antivirus and the email server goes to <command>clamav-milter</command>. A <emphasis>milter</emphasis> (short for <emphasis>mail filter</emphasis>) is a filtering program specially designed to interface with email servers. A milter uses a standard application programming interface (API) that provides much better performance than filters external to the email servers. Milters were initially introduced by <emphasis>Sendmail</emphasis>, but <emphasis>Postfix</emphasis> soon followed suit."
msgstr "Tugas antarmuka antara antivirus dan server surel jatuh ke <command>clamav-milter</command>. <emphasis>milter</emphasis> (singkatan dari <emphasis>mail filter</emphasis>) adalah sebuah program penyaringan yang dirancang khusus untuk menyambung dengan server surel. Suatu milter menggunakan standar antarmuka pemrograman aplikasi (API) yang memberikan kinerja lebih baik daripada filter eksternal ke server surel. Milters awalnya diperkenalkan oleh <emphasis>Sendmail</emphasis>, tetapi <emphasis>Postfix</emphasis> segera mengikutinya."

msgid "<emphasis>QUICK LOOK</emphasis> A milter for Spamassassin"
msgstr "<emphasis>LIHAT SEKILAS</emphasis> Milter untuk Spamassassin"

#, fuzzy
#| msgid "<primary><emphasis role=\"pkg\">spamass-milter</emphasis></primary>"
msgid "<primary><emphasis role=\"pkg\">spamassassin</emphasis></primary>"
msgstr "<primary><emphasis role=\"pkg\">spamass-milter</emphasis></primary>"

msgid "<primary><emphasis role=\"pkg\">spamass-milter</emphasis></primary>"
msgstr "<primary><emphasis role=\"pkg\">spamass-milter</emphasis></primary>"

msgid "The <emphasis role=\"pkg\">spamass-milter</emphasis> package provides a milter based on <emphasis>SpamAssassin</emphasis>, the famous unsolicited email detector. It can be used to flag messages as probable spams (by adding an extra header) and/or to reject the messages altogether if their “spamminess” score goes beyond a given threshold."
msgstr "Paket <emphasis role=\"pkg\">spamass-milter</emphasis> menyediakan sebuah milter berbasis <emphasis>SpamAssassin</emphasis>, detektor spam terkenal. Dapat digunakan untuk menandai pesan sebagai mungkin spam (dengan menambahkan sebuah header tambahan) dan/atau menolak pesan sama sekali jika nilai \"spamminess\" mereka melampaui ambang batas tertentu."

msgid "Once the <emphasis role=\"pkg\">clamav-milter</emphasis> package is installed, the milter should be reconfigured to run on a TCP port rather than on the default named socket. This can be achieved with <command>dpkg-reconfigure clamav-milter</command>. When prompted for the “Communication interface with Sendmail”, answer “<literal>inet:10002@127.0.0.1</literal>”."
msgstr "Setelah paket <emphasis role=\"pkg\">clamav-milter</emphasis> diinstal, milter harus ditata ulang untuk berjalan pada sebuah port TCP bukan pada named socket yang default. Hal ini dapat dicapai dengan <command>dpkg-reconfigure clamav-milter</command>. Ketika diminta untuk \"Antarmuka komunikasi dengan Sendmail\", jawablah \"<literal>inet:10002@127.0.0.1</literal>\"."

msgid "<emphasis>NOTE</emphasis> Real TCP port vs named socket"
msgstr "<emphasis>CATATAN</emphasis> Port TCP nyata vs soket bernama"

msgid "The reason why we use a real TCP port rather than the named socket is that the postfix daemons often run chrooted and do not have access to the directory hosting the named socket. You could also decide to keep using a named socket and pick a location within the chroot (<filename>/var/spool/postfix/</filename>)."
msgstr "Alasan mengapa kita menggunakan port TCP nyata daripada soket bernama adalah bahwa daemon postfix sering dijalankan dengan mode chroot dan tidak memiliki akses ke direktori tempat soket bernama. Anda juga dapat memutuskan untuk tetap menggunakan soket bernama dan memilih lokasi chroot (<filename>/var/spool/postfix/</filename>)."

msgid "The standard ClamAV configuration fits most situations, but some important parameters can still be customized with <command>dpkg-reconfigure clamav-base</command>."
msgstr "Konfigurasi ClamAV standar cocok untuk kebanyakan situasi, tetapi beberapa parameter penting masih dapat disesuaikan dengan <command>dpkg-reconfigure clamav-base</command>."

msgid "The last step involves telling Postfix to use the recently-configured filter. This is a simple matter of adding the following directive to <filename>/etc/postfix/main.cf</filename>:"
msgstr "Langkah terakhir melibatkan meemberitahu Postfix untuk menggunakan filter yang baru-baru ini dikonfigurasi. Ini bisa dilakukan sekedar dengan menambahkan direktif berikut untuk <filename>/etc/postfix/main.cf</filename>:"

msgid ""
"\n"
"# Virus check with clamav-milter\n"
"smtpd_milters = inet:[127.0.0.1]:10002"
msgstr ""
"\n"
"# Virus check with clamav-milter\n"
"smtpd_milters = inet:[127.0.0.1]:10002"

#, fuzzy
#| msgid "If the antivirus causes problems, this line can be commented out, and <command>service postfix reload</command> should be run so that this change is taken into account."
msgid "If the antivirus causes problems, this line can be commented out, and <command>systemctl reload postfix</command> should be run so that this change is taken into account."
msgstr "Jika antivirus yang menyebabkan masalah, baris ini dapat dijadikan komentar dan <command>service postfix reload</command> harus dijalankan sehingga perubahan ini diperhitungkan."

msgid "<emphasis>IN PRACTICE</emphasis> Testing the antivirus"
msgstr "<emphasis>DALAM PRAKTEK</emphasis> Menguji antivirus"

#, fuzzy
#| msgid "Once the antivirus is set up, its correct behavior should be tested. The simplest way to do that is to send a test email with an attachment containing the <filename>eicar.com</filename> (or <filename>eicar.com.zip</filename>) file, which can be downloaded online: <ulink type=\"block\" url=\"http://www.eicar.org/86-0-Intended-use.html\" />"
msgid "Once the antivirus is set up, its correct behavior should be tested. The simplest way to do that is to send a test email with an attachment containing the <filename>eicar.com</filename> (or <filename>eicar.com.zip</filename>) file, which can be downloaded online: <ulink type=\"block\" url=\"https://2016.eicar.org/86-0-Intended-use.html\" />"
msgstr "Setelah antivirus disiapkan, perilaku yang benar harus diuji. Cara termudah untuk melakukannya adalah dengan mengirim surel percobaan dengan lampiran yang berisi berkas <filename>eicar.com</filename> (atau <filename>eicar.com.zip</filename>), yang dapat diunduh secara daring: <ulink type=\"block\" url=\"http://www.eicar.org/86-0-Intended-use.html\" />"

msgid "This file is not a true virus, but a test file that all antivirus software on the market diagnose as a virus to allow checking installations."
msgstr "Berkas ini bukan virus yang benar, tetapi berkas uji yang didiagnosa sebagai sebuah virus oleh semua perangkat lunak antivirus di pasar agar memungkinkan memeriksa instalasi."

msgid "All messages handled by Postfix now go through the antivirus filter."
msgstr "Semua pesan yang ditangani oleh Postfix sekarang pergi melalui saringan antivirus."

msgid "Fighting Spam with SPF, DKIM and DMARC"
msgstr ""

msgid "The high number of unsolicited email sent every day led to the creation of several standards, which aim at validating, that the sending host of an email is authorized and that the email has not been tampered with. The following systems are all DNS-based and require the administrators to not only have control over the mail server, but over the DNS for the domain in question too."
msgstr ""

#, fuzzy
#| msgid "<emphasis>CAUTION</emphasis> First installation"
msgid "<emphasis>CAUTION</emphasis> Controversial Discussion"
msgstr "<emphasis>HATI-HATI</emphasis> Instalasi pertama"

msgid "Like any other tool, the following standards have limits and real effects if put to use. They can (and should) lead to emails being rejected or even just discarded. If that happens to some legitimate emails (sometimes sent from a misconfigured SMTP server), it usually causes anger and a lack of understanding by the user. Therefor these rules are often applied as a \"soft fail\" or a \"soft reject\", which usually means, that failing the checks only leads to adding a (header) mark to the affected email. There are people who think that this makes these standards \"broken by design\". Decide for yourself and be careful about how strict you choose to apply these standards."
msgstr ""

msgid "Integrating the Sender Policy Framework (SPF)"
msgstr ""

#, fuzzy
#| msgid "<primary>SIP</primary><secondary>server</secondary>"
msgid "<primary>SPF</primary><see>Sender Policy Framework</see>"
msgstr "<primary>SIP</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary>key pair</primary>"
msgid "<primary>Sender Policy Framework </primary>"
msgstr "<primary>pasangan kunci</primary>"

#, fuzzy
#| msgid "<primary><emphasis role=\"pkg\">vsftpd</emphasis></primary>"
msgid "<primary><emphasis role=\"pkg\">postfix-policyd-spf-python</emphasis></primary>"
msgstr "<primary><emphasis role=\"pkg\">vsftpd</emphasis></primary>"

msgid "The Sender Policy Framework (<acronym>SPF</acronym>) is used to validate if a certain mail server is allowed to send emails for a given domain. It is mostly configured through DNS. The syntax for the entry to make is explained in Detail at: <ulink type=\"block\" url=\"https://web.archive.org/web/20190224184030/http://www.openspf.org/SPF_Record_Syntax\">http://www.openspf.org/SPF_Record_Syntax<footnote> <para>The <literal>openspf.org</literal> website disappeared in February 2019 for no obvious reason. The contents are still accessible at <ulink url=\"https://web.archive.org/web/20190224184030/http://www.openspf.org/SPF_Record_Syntax\" />.</para> </footnote></ulink> <ulink type=\"block\" url=\"https://tools.ietf.org/html/rfc7208\" /> <ulink type=\"block\" url=\"https://en.wikipedia.org/wiki/Sender_Policy_Framework\" />"
msgstr ""

msgid "The following is a sample DNS entry which states that all the domain's Mail Exchange Resource Records (MX-RRs) are allowed to email the current domain, and all others are prohibited. The DNS entry does not need to be given a name. But to use the <literal>include</literal> directive it must have one."
msgstr ""

msgid ""
"<![CDATA[\n"
"Name: example.org\n"
"Type: TXT\n"
"TTL:  3600\n"
"Data: v=spf1 a mx -all\n"
"]]>"
msgstr ""

msgid "Let's take a quick look at the <literal>falcot.org</literal> entry."
msgstr ""

msgid ""
"\n"
"<computeroutput># </computeroutput><userinput>host -t TXT falcot.org</userinput><computeroutput><![CDATA[\n"
"falcot.org descriptive text \"v=spf1 ip4:199.127.61.96 +a +mx +ip4:206.221.184.234 +ip4:209.222.96.251 ~all\"]]></computeroutput>"
msgstr ""

msgid "It states, that the IP of the sender must match the A record for the sending domain, or must be listed as one of the Mail Exchange Resource Records for the current domain, or must be one of the three mentioned IP4 addresses. All other hosts should be marked as not being allowed to send email for the sender domain. The latter is called a \"soft fail\" and is intended to mark the email accordingly, but still accept it."
msgstr ""

msgid "The <command>postfix</command> mail server can check the SPF record for incoming emails using the <emphasis role=\"pkg\">postfix-policyd-spf-python</emphasis> package, a policy agent written in Python. The file <filename>/usr/share/doc/postfix-policyd-spf-python/README.Debian</filename> describes the necessary steps to integrate the agent into postfix, so we won't repeat it here."
msgstr ""

#, fuzzy
#| msgid "<primary>SIP</primary><secondary>PBX</secondary>"
msgid "<primary>Postfix</primary><secondary>SPF</secondary>"
msgstr "<primary>SIP</primary><secondary>PBX</secondary>"

msgid "The configuration is done in the file <filename>/etc/postfix-policyd-spf-python/policyd-spf.conf</filename>, which is fully documented in <citerefentry><refentrytitle>policyd-spf.conf</refentrytitle> <manvolnum>5</manvolnum></citerefentry> and <filename>/usr/share/doc/postfix-policyd-spf-python/policyd-spf.conf.commented.gz</filename>. The main configuration parameters are <literal>HELO_reject</literal> and <literal>Mail_From_reject</literal>, which configure if emails should be rejected (<literal>Fail</literal>) or accepted with a header being appended (<literal>False</literal>), if checks fail. The latter is often useful, when the message is further processed by a spam filter."
msgstr ""

msgid "If the result is intended to be used by <emphasis role=\"pkg\">opendmarc</emphasis> (<xref linkend=\"sect.dmarc\" />), then <literal>Header_Type</literal> must be set to <literal>AR</literal>."
msgstr ""

msgid "Note, that <emphasis role=\"pkg\">spamassassin</emphasis> contains a plugin to check the SPF record."
msgstr ""

#, fuzzy
#| msgid "<primary>client</primary><secondary>NFS</secondary>"
msgid "<primary>spamassassin</primary><secondary>SPF</secondary>"
msgstr "<primary>klien</primary><secondary>NFS</secondary>"

msgid "Integrating DomainKeys (DKIM) Signing and Checking"
msgstr ""

#, fuzzy
#| msgid "<primary>MX</primary><secondary>server</secondary>"
msgid "<primary>DKIM</primary><see>DomainKeys Identified Mail</see>"
msgstr "<primary>MX</primary><secondary>peladen</secondary>"

#, fuzzy
#| msgid "<primary>domain controller</primary>"
msgid "<primary>DomainKeys Identified Mail</primary>"
msgstr "<primary>pengontrol domain</primary>"

#, fuzzy
#| msgid "<primary><emphasis role=\"pkg\">nginx</emphasis></primary>"
msgid "<primary><emphasis role=\"pkg\">opendkim</emphasis></primary>"
msgstr "<primary><emphasis role=\"pkg\">nginx</emphasis></primary>"

msgid "The Domain Keys Identified Mail (<acronym>DKIM</acronym>) standard is a sender authentication system. The mail transport agent, here <command>postfix</command>, adds a digital signature associated with the domain name to the header of outgoing emails. The receiving party can validate the message body and header fields by checking the signature against a public key, which is retrieved from the senders DNS records. <ulink type=\"block\" url=\"http://dkim.org/\" />"
msgstr ""

#, fuzzy
#| msgid "The client features in Samba allow a Linux machine to access Windows shares and shared printers. The required programs are available in the <emphasis role=\"pkg\">cifs-utils</emphasis> and <emphasis role=\"pkg\">smbclient</emphasis> packages."
msgid "The necessary tools are shipped with the <emphasis role=\"pkg\">opendkim</emphasis> and <emphasis role=\"pkg\">opendkim-tools</emphasis> packages."
msgstr "Fitur klien di Samba memungkinkan mesin Linux untuk mengakses share Windows dan pencetak bersama. Program yang diperlukan tersedia dalam paket yang <emphasis role=\"pkg\">cifs-utils</emphasis> dan <emphasis role=\"pkg\">smbclient</emphasis>."

#, fuzzy
#| msgid "<emphasis>CAUTION</emphasis> Log file rotation"
msgid "<emphasis>CAUTION</emphasis> Mailing List Software and DKIM"
msgstr "<emphasis>HATI-HATI</emphasis> Rotasi berkas log"

msgid "Mailing list managers often rewrite some email headers, thus leading to invalid DKIM signatures. Even using a <literal>relaxed</literal> canonicalization does not always prevent this from happening. So the administrators must pay close attention to the mail severs log files to identify such issues. Otherwise such emails might be flagged as spam and might get rejected."
msgstr ""

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on contents</secondary>"
msgid "<primary>DomainKeys Identified Mail</primary><secondary>mailing list problems</secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan pada isi</secondary>"

msgid "First the private key must be created using the command <command>opendkim-genkey -s <replaceable>SELECTOR</replaceable> -d <replaceable>DOMAIN</replaceable></command>. <replaceable>SELECTOR</replaceable> must be a unique name for the key. It can be as simple as \"mail\" or the date of creation, if you plan to rotate keys."
msgstr ""

#, fuzzy
#| msgid "<primary><foreignphrase>OpenSSL</foreignphrase></primary><secondary>creating keys</secondary>"
msgid "<primary><emphasis role=\"pkg\">opendkim</emphasis></primary><secondary>opendkim-genkey</secondary>"
msgstr "<primary><foreignphrase>OpenSSL</foreignphrase></primary><secondary>membuat kunci</secondary>"

msgid "Create a private key for signing E-Mails from falcot.com"
msgstr ""

#, fuzzy
#| msgid ""
#| "\n"
#| "<computeroutput># </computeroutput><userinput>cd /usr/share/migrationtools</userinput>\n"
#| "<computeroutput># </computeroutput><userinput>LDAPADD=\"/usr/bin/ldapadd -c\" ETC_ALIASES=/dev/null ./migrate_all_online.sh</userinput>"
msgid ""
"\n"
"<computeroutput># </computeroutput><userinput>opendkim-genkey -s mail -d falcot.com -D /etc/dkimkeys</userinput>\n"
"<computeroutput># </computeroutput><userinput>chown opendkim.opendkim /etc/dkimkeys/mail.*</userinput>"
msgstr ""
"\n"
"<computeroutput># </computeroutput><userinput>cd /usr/share/migrationtools</userinput>\n"
"<computeroutput># </computeroutput><userinput>LDAPADD=\"/usr/bin/ldapadd -c\" ETC_ALIASES=/dev/null ./migrate_all_online.sh</userinput>"

msgid "This will create the files <filename>/etc/dkimkeys/mail.private</filename> and <filename>/etc/dkimkeys/mail.txt</filename> and set the appropriate ownership. The first file contains the private key and the latter the public key, that needs to be added to the DNS:"
msgstr ""

msgid ""
"<![CDATA[\n"
"Name: mail._domainkey\n"
"Type: TXT\n"
"TTL:  3600\n"
"Data: \"v=DKIM1; h=sha256; k=rsa; s=email; p=[...]\"\n"
"]]>"
msgstr ""

msgid "The <emphasis role=\"pkg\">opendkim</emphasis> package in Debian defaults to a keysize of 2048 bit. Unfortunately some DNS servers can only handle text entries with a maximum length of 255 characters, which is exceeded by the chosen default keysize. In this case use the option <command>-b 1024</command> to chose a smaller keysize. If <command>opendkim-testkey</command> succeeds, the entry has been successfully set up. The syntax of the entry is explained here: <ulink type=\"block\" url=\"https://tools.ietf.org/html/rfc6376\" /> <ulink type=\"block\" url=\"https://en.wikipedia.org/wiki/DKIM\" />"
msgstr ""

msgid "To configure <emphasis role=\"pkg\">opendkim</emphasis>, <literal>SOCKET</literal> and <literal>RUNDIR</literal> must be chosen in <filename>/etc/default/opendkim</filename>. Please note that <literal>SOCKET</literal> must be accessible from <literal>postfix</literal> in its chrooted environment. The further configuration is done in <filename>/etc/opendkim.conf</filename>. The following is a configuration excerpt, which makes sure that the <literal>Domain</literal> \"falcot.com\" and all subdomains (<literal>SubDomain</literal>) are signed by the <literal>Selector</literal> \"mail\" and the single private key (<literal>KeyFile</literal>) <filename>/etc/dkimkeys/mail.private</filename>. The \"relaxed\" <literal>Canonicalization</literal> for both the header and the body tolerates mild modification (by a mailing list software, for example). The filter runs both in signing (\"s\") and verification (\"v\") <literal>Mode</literal>. If a signature fails to validate (<literal>On-BadSignature</literal>), the mail should be quarantined (\"q\")."
msgstr ""

msgid ""
"<![CDATA[\n"
"[...]\n"
"Domain                  falcot.com\n"
"KeyFile                 /etc/dkimkeys/mail.private\n"
"Selector                mail\n"
"\n"
"[...]\n"
"Canonicalization        relaxed/relaxed\n"
"Mode                    sv\n"
"On-BadSignature         q\n"
"SubDomains              yes\n"
"\n"
"[...]\n"
"Socket                  inet:12345@localhost\n"
"\n"
"[...]\n"
"UserID                  opendkim\n"
"]]>"
msgstr ""

msgid "It is also possible to use multiple selectors/keys (<literal>KeyTable</literal>), domains (<literal>SigningTable</literal>) and to specify internal or trusted hosts (<literal>InternalHosts</literal>, <literal>ExternalIgnoreList</literal>), which may send mail through the server as one of the signing domains without credentials."
msgstr ""

#, fuzzy
#| msgid "Directives to add in the <filename>/etc/postfix/main.cf</filename> file"
msgid "The following directives in <filename>/etc/postfix/main.cf</filename> make <literal>postfix</literal> use the filter:"
msgstr "Direktif yang ditambahkan dalam berkas <filename>/etc/postfix/main.cf</filename>"

#, fuzzy
#| msgid "<primary>server</primary><secondary>MX</secondary>"
msgid "<primary>Postfix</primary><secondary>DKIM</secondary>"
msgstr "<primary>peladen</primary><secondary>MX</secondary>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>smtpd_milters</literal></secondary><tertiary>DKIM</tertiary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the sender</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>non_smtpd_milters</literal></secondary><tertiary>DKIM</tertiary>"
msgstr "<primary>surel</primary> <secondary>penyaringan pada pengirim</secondary>"

msgid ""
"<![CDATA[\n"
"milter_default_action = accept\n"
"non_smtpd_milters = inet:localhost:12345\n"
"smtpd_milters = inet:localhost:12345\n"
"]]>"
msgstr ""

msgid "To differentiate signing and verification it is sometimes more useful to add the directives to the services in <filename>/etc/postfix/master.cf</filename> instead."
msgstr ""

msgid "More information is available in the <filename>/usr/share/doc/opendkim/</filename> directory and the manual pages <citerefentry><refentrytitle>opendkim</refentrytitle> <manvolnum>8</manvolnum></citerefentry> and <citerefentry><refentrytitle>opendkim.conf</refentrytitle> <manvolnum>5</manvolnum></citerefentry>."
msgstr ""

msgid "Note that <emphasis role=\"pkg\">spamassassin</emphasis> contains a plugin to check the DKIM record."
msgstr ""

#, fuzzy
#| msgid "<primary>server</primary><secondary>MX</secondary>"
msgid "<primary>spamassassin</primary><secondary>DKIM</secondary>"
msgstr "<primary>peladen</primary><secondary>MX</secondary>"

msgid "Integrating Domain-based Message Authentication, Reporting and Conformance (DMARC)"
msgstr ""

msgid "<primary>DMARC</primary><see>Domain-based Message Authentication, Reporting and Conformance</see>"
msgstr ""

msgid "<primary>Domain-based Message Authentication, Reporting and Conformance</primary>"
msgstr ""

#, fuzzy
#| msgid "<primary><emphasis role=\"pkg\">vsftpd</emphasis></primary>"
msgid "<primary><emphasis role=\"pkg\">opendmarc</emphasis></primary>"
msgstr "<primary><emphasis role=\"pkg\">vsftpd</emphasis></primary>"

msgid "The Domain-based Message Authentication, Reporting and Conformance (<acronym>DMARC</acronym>) standard can be used to define a DNS TXT entry with the name <literal>_dmarc</literal> and the action, that should be taken, when emails, which contain your domain as sending host, fail to validate using DKIM and SPF. <ulink type=\"block\" url=\"https://dmarc.org/overview/\" />"
msgstr ""

msgid "Let's have a look at the entries of two large providers:"
msgstr ""

msgid ""
"\n"
"<computeroutput># </computeroutput><userinput>host -t TXT _dmarc.gmail.com</userinput><computeroutput><![CDATA[\n"
"_dmarc.gmail.com descriptive text \"v=DMARC1; p=none; sp=quarantine; rua=mailto:mailauth-reports@google.com\"]]></computeroutput>\n"
"<computeroutput># </computeroutput><userinput>host -t TXT _dmarc.yahoo.com</userinput><computeroutput><![CDATA[\n"
"_dmarc.yahoo.com descriptive text \"v=DMARC1; p=reject; pct=100; rua=mailto:dmarc_y_rua@yahoo.com;\"]]></computeroutput>"
msgstr ""

msgid "Yahoo has a strict policy to <literal>reject</literal> all emails pretending to be sent from a Yahoo account but missing or failing DKIM and SPF checks. Google Mail (Gmail) propagates a very relaxed policy, in which such messages from the main domain should still be accepted (<literal>p=none</literal>). For subdomains they should be marked as spam (<literal>sp=quarantine</literal>). The addresses given in the <literal>rua</literal> key can be used to send aggregated DMARC reports to. The full syntax is explained here: <ulink type=\"block\" url=\"https://tools.ietf.org/html/rfc7489\" /> <ulink type=\"block\" url=\"https://en.wikipedia.org/wiki/DMARC\" />"
msgstr ""

msgid "The <command>postfix</command> mail server can use this information too. The <emphasis role=\"pkg\">opendmarc</emphasis> package contains the necessary milter. Similar to <emphasis role=\"pkg\">opendkim</emphasis> <literal>SOCKET</literal> and <literal>RUNDIR</literal> must be chosen in <filename>/etc/default/opendmarc</filename> (for Unix sockets you must make sure, that they are inside the postfix chroot to be found). The configuration file <filename>/etc/opendmarc.conf</filename> contains detailed comments and is also explained in <citerefentry><refentrytitle>opendmarc.conf</refentrytitle> <manvolnum>5</manvolnum></citerefentry>. By default, emails failing the DMARC validation are not rejected but flagged, by adding an appropriate header field. To change this, use <literal>RejectFailures true</literal>."
msgstr ""

msgid "The milter is then added to <literal>smtpd_milters</literal> and <literal>non_smtpd_milters</literal>. If we configured the opendkim and opendmarc milters to run on ports 12345 and 54321, the entry in <filename>/etc/postfix/main.cf</filename> looks like this:"
msgstr ""

#, fuzzy
#| msgid "<primary>server</primary><secondary>MX</secondary>"
msgid "<primary>Postfix</primary><secondary>DMARC</secondary>"
msgstr "<primary>peladen</primary><secondary>MX</secondary>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>smtpd_milters</literal></secondary><tertiary>DMARC</tertiary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the sender</secondary>"
msgid "<primary>Postfix</primary><secondary><literal>non_smtpd_milters</literal></secondary><tertiary>DMARC</tertiary>"
msgstr "<primary>surel</primary> <secondary>penyaringan pada pengirim</secondary>"

msgid ""
"<![CDATA[\n"
"non_smtpd_milters = inet:localhost:12345,inet:localhost:54321\n"
"smtpd_milters = inet:localhost:12345,inet:localhost:54321\n"
"]]>"
msgstr ""

#, fuzzy
#| msgid "Directives to add in the <filename>/etc/postfix/main.cf</filename> file"
msgid "The milter can also be selectively applied to a service in <filename>/etc/postfix/master.cf</filename> instead."
msgstr "Direktif yang ditambahkan dalam berkas <filename>/etc/postfix/main.cf</filename>"

msgid "Authenticated SMTP"
msgstr "SMTP Terotentikasi"

msgid "Being able to send emails requires an SMTP server to be reachable; it also requires said SMTP server to send emails through it. For roaming users, this may need regularly changing the configuration of the SMTP client, since Falcot's SMTP server rejects messages coming from IP addresses apparently not belonging to the company. Two solutions exist: either the roaming user installs an SMTP server on their computer, or they still use the company server with some means of authenticating as an employee. The former solution is not recommended since the computer won't be permanently connected, and it won't be able to retry sending messages in case of problems; we will focus on the latter solution."
msgstr "Mampu mengirim surel memerlukan server SMTP yang dapat dijangkau; ini juga memerlukan server SMTP untuk mengirim surel melalui itu. Untuk pengguna roaming, ini mungkin memerlukan secara teratur mengubah konfigurasi klien SMTP, karena server SMTP Falcot's menolak pesan yang datang dari alamat IP yang tampaknya bukan milik perusahaan. Ada dua solusi: pengguna roaming menginstal server SMTP pada komputer mereka atau mereka masih menggunakan server perusahaan dengan beberapa cara untuk otentikasi sebagai karyawan. Solusi pertama tidak dianjurkan karena komputer tidak akan dihubungkan secara permanen, dan tidak akan dapat mengulangi pengiriman pesan jika terjadi masalah; kita akan fokus pada solusi yang terakhir."

msgid "SMTP authentication in Postfix relies on SASL (<emphasis>Simple Authentication and Security Layer</emphasis>). It requires installing the <emphasis role=\"pkg\">libsasl2-modules</emphasis> and <emphasis role=\"pkg\">sasl2-bin</emphasis> packages, then registering a password in the SASL database for each user that needs authenticating on the SMTP server. This is done with the <command>saslpasswd2</command> command, which takes several parameters. The <literal>-u</literal> option defines the authentication domain, which must match the <literal>smtpd_sasl_local_domain</literal> parameter in the Postfix configuration. The <literal>-c</literal> option allows creating a user, and <literal>-f</literal> allows specifying the file to use if the SASL database needs to be stored at a different location than the default (<filename>/etc/sasldb2</filename>)."
msgstr "Otentikasi SMTP di Postfix mengandalkan SASL (<emphasis>Simple Authentication and Security Layer</emphasis>). Hal ini membutuhkan instalasi paket <emphasis role=\"pkg\">libsasl2-modules</emphasis> dan <emphasis role=\"pkg\">sasl2-bin</emphasis>, kemudian mendaftarkan suatu kata sandi di basis data SASL untuk setiap pengguna yang memerlukan otentikasi pada server SMTP. Hal ini dilakukan dengan perintah <command>saslpasswd2</command>, yang memerlukan beberapa parameter. Opsi <literal>-U</literal> mendefinisikan domain otentikasi, yang harus cocok dengan parameter <literal>smtpd_sasl_local_domain</literal> dalam konfigurasi Postfix. Opsi <literal>-C</literal> memungkinkan membuat pengguna, dan <literal>-f</literal> menetapkan berkas yang akan dipakai jika basis data SASL perlu disimpan di lokasi yang berbeda dari default (<filename>/etc/sasldb2</filename>)."

msgid ""
"\n"
"<computeroutput># </computeroutput><userinput>saslpasswd2 -u `postconf -h myhostname` -f /var/spool/postfix/etc/sasldb2 -c jean</userinput>\n"
"<computeroutput>[... type jean's password twice ...]</computeroutput>"
msgstr ""
"\n"
"<computeroutput># </computeroutput><userinput>saslpasswd2 -u `postconf -h myhostname` -f /var/spool/postfix/etc/sasldb2 -c jean</userinput>\n"
"<computeroutput>[... ketikkan kata sandi jean dua kali ...]</computeroutput>"

msgid "Note that the SASL database was created in Postfix's directory. In order to ensure consistency, we also turn <filename>/etc/sasldb2</filename> into a symbolic link pointing at the database used by Postfix, with the <command>ln -sf /var/spool/postfix/etc/sasldb2 /etc/sasldb2</command> command."
msgstr "Perhatikan bahwa basis data SASL dibuat dalam direktori milik Postfix. Untuk memastikan konsistensi, kita juga mengubah <filename>/etc/sasldb2</filename> menjadi link simbolik menunjuk pada basis data yang digunakan oleh Postfix, dengan perintah <command>ln -sf /var/spool/postfix/etc/sasldb2 /etc/sasldb2</command>."

msgid "Now we need to configure Postfix to use SASL. First the <literal>postfix</literal> user needs to be added to the <literal>sasl</literal> group, so that it can access the SASL account database. A few new parameters are also needed to enable SASL, and the <literal>smtpd_recipient_restrictions</literal> parameter needs to be configured to allow SASL-authenticated clients to send emails freely."
msgstr "Sekarang kita perlu mengkonfigurasi Postfix agar menggunakan SASL. Pertama pengguna <literal>postfix</literal> perlu ditambahkan ke grup <literal>sasl</literal>, sehingga dapat mengakses basis data akun SASL. Beberapa parameter baru juga diperlukan untuk mengaktifkan SASL, dan parameter <literal>smtpd_recipient_restrictions</literal> perlu dikonfigurasi untuk memungkinkan kilen terotentikasi-SASL untuk mengirim surel dengan bebas."

msgid "Enabling SASL in <filename>/etc/postfix/main.cf</filename>"
msgstr "Memfungsikan SASL di <filename>/etc/postfix/main.cf</filename>"

#, fuzzy
#| msgid ""
#| "\n"
#| "# Enable SASL authentication\n"
#| "smtpd_sasl_auth_enable = yes\n"
#| "# Define the SASL authentication domain to use\n"
#| "smtpd_sasl_local_domain = $myhostname\n"
#| "[...]\n"
#| "# Adding permit_sasl_authenticated before reject_unauth_destination\n"
#| "# allows relaying mail sent by SASL-authenticated users\n"
#| "smtpd_recipient_restrictions = permit_mynetworks,\n"
#| "    permit_sasl_authenticated,\n"
#| "    reject_unauth_destination,\n"
#| "[...]"
msgid ""
"\n"
"# Enable SASL authentication\n"
"smtpd_sasl_auth_enable = yes\n"
"# Define the SASL authentication domain to use\n"
"smtpd_sasl_local_domain = $myhostname\n"
"[...]\n"
"# Adding permit_sasl_authenticated before reject_unauth_destination\n"
"# allows relaying mail sent by SASL-authenticated users\n"
"smtpd_recipient_restrictions =\n"
"    permit_sasl_authenticated,\n"
"    permit_mynetworks,\n"
"    reject_unauth_destination,\n"
"[...]"
msgstr ""
"\n"
"# Memfungsikan otentikasi SASL\n"
"smtpd_sasl_auth_enable = yes\n"
"# Define the SASL authentication domain to use\n"
"smtpd_sasl_local_domain = $myhostname\n"
"[...]\n"
"# Menambahkan permit_sasl_authenticated before reject_unauth_destination\n"
"# mengizinkan merelay surel yang dikirim oleh pengguna SASL-authenticated\n"
"smtpd_recipient_restrictions = permit_mynetworks,\n"
"    permit_sasl_authenticated,\n"
"    reject_unauth_destination,\n"
"[...]"

msgid "It is usually a good idea to not send passwords over an unencrypted connection. <emphasis>Postfix</emphasis> allows to use different configurations for each port (service) it runs on. All these can be configured with different rules and directives in the <filename>/etc/postfix/master.cf</filename> file. To turn off authentication at all for port 25 (<literal>smtpd</literal> service) add the following directive:"
msgstr ""

msgid ""
"<![CDATA[smtp      inet  n       -       y       -       -       smtpd\n"
"    [..]\n"
"    -o smtpd_sasl_auth_enable=no\n"
"    [..]\n"
"]]>"
msgstr ""

msgid "If for some reason clients use an outdated <literal>AUTH</literal> command (some very old mail clients do), interoperability with them can be enabled using the <literal>broken_sasl_auth_clients</literal> directive."
msgstr ""

msgid "<emphasis>EXTRA</emphasis> Authenticated SMTP client"
msgstr "<emphasis>EKSTRA</emphasis> Klien SMTP terotentikasi"

msgid "Most email clients are able to authenticate to an SMTP server before sending outgoing messages, and using that feature is a simple matter of configuring the appropriate parameters. If the client in use does not provide that feature, the workaround is to use a local Postfix server and configure it to relay email via the remote SMTP server. In this case, the local Postfix itself will be the client that authenticates with SASL. Here are the required parameters:"
msgstr "Kebanyakan klien surel dapat untuk melakukan otentikasi ke server SMTP sebelum mengirim pesan keluar, dan menggunakan fitur itu cukup dengan sekedar mengkonfigurasi parameter yang tepat. Jika klien yang digunakan tidak menyediakan fitur itu, solusinya adalah untuk menggunakan server Postfix lokal dan mengkonfigurasi dengan relay surel melalui server SMTP remote. Dalam kasus ini, Postfix lokal itu sendiri adalah klien yang mengotentikasi dengan SASL. Berikut adalah parameter yang diperlukan:"

msgid ""
"\n"
"smtp_sasl_auth_enable = yes\n"
"smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd\n"
"relay_host = [mail.falcot.com]"
msgstr ""
"\n"
"smtp_sasl_auth_enable = yes\n"
"smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd\n"
"relay_host = [mail.falcot.com]"

msgid "The <filename>/etc/postfix/sasl_passwd</filename> file needs to contain the username and password to use for authenticating on the <literal>mail.falcot.com</literal> server. Here is an example:"
msgstr "Berkas <filename>/etc/postfix/sasl_passwd</filename> perlu berisi nama pengguna dan kata sandi yangdigunakan untuk otentikasi pada server <literal>mail.falcot.com</literal>. Berikut adalah contoh:"

msgid ""
"\n"
"[mail.falcot.com]   joe:LyinIsji"
msgstr ""
"\n"
"[mail.falcot.com]   joe:LyinIsji"

msgid "As for all Postfix maps, this file must be turned into <filename>/etc/postfix/sasl_passwd.db</filename> with the <command>postmap</command> command."
msgstr "Seperti semua pemetaan Postfix, berkas ini harus diubah menjadi <filename>/etc/postfix/sasl_passwd.db</filename> dengan perintah <command>postmap</command>."

msgid "Web Server (HTTP)"
msgstr "Server Web (HTTP)"

#, fuzzy
#| msgid "The Falcot Corp administrators decided to use the Apache HTTP server, included in Debian <emphasis role=\"distribution\">Jessie</emphasis> at version 2.4.10."
msgid "The Falcot Corp administrators decided to use the Apache HTTP server, included in Debian <emphasis role=\"distribution\">Buster</emphasis> at version 2.4.38."
msgstr "Administrator Falcot Corp memutuskan untuk menggunakan server HTTP Apache, yang ada dalam Debian <emphasis role=\"distribution\">Jessie</emphasis> adalah versi 2.4.10."

msgid "<primary><command>apache</command></primary>"
msgstr "<primary><command>apache</command></primary>"

msgid "<primary>server</primary><secondary>web</secondary>"
msgstr "<primary>server</primary><secondary>web</secondary>"

#, fuzzy
#| msgid "<primary>server</primary><secondary>web</secondary>"
msgid "<primary>web server</primary><seealso>Apache</seealso>"
msgstr "<primary>server</primary><secondary>web</secondary>"

msgid "<primary>server</primary><secondary>HTTP</secondary>"
msgstr "<primary>server</primary><secondary>HTTP</secondary>"

#, fuzzy
#| msgid "<primary>HTTP</primary><secondary>server</secondary>"
msgid "<primary>HTTP</primary><secondary>server</secondary><seealso>Apache</seealso>"
msgstr "<primary>HTTP</primary><secondary>server</secondary>"

msgid "<emphasis>ALTERNATIVE</emphasis> Other web servers"
msgstr "<emphasis>ALTERNATIF</emphasis> Server web lain"

msgid "Apache is merely the most widely-known (and widely-used) web server, but there are others; they can offer better performance under certain workloads, but this has its counterpart in the smaller number of available features and modules. However, when the prospective web server is built to serve static files or to act as a proxy, the alternatives, such as <emphasis role=\"pkg\">nginx</emphasis> and <emphasis role=\"pkg\">lighttpd</emphasis>, are worth investigating."
msgstr "Apache adalah sekedar server web yang paling dikenal (dan digunakan secara luas) tetapi ada juga yang lain; mereka dapat menawarkan kinerja yang lebih baik di bawah beban kerja tertentu, tetapi lebih sedikit fitur dan modul. Namun, ketika calon web server ini dibangun untuk melayani berkas statis atau untuk bertindak sebagai proksi, alternatif seperti <emphasis role=\"pkg\">nginx</emphasis> dan <emphasis role=\"pkg\">lighttpd</emphasis>, pantas diselidiki."

msgid "<primary><emphasis role=\"pkg\">nginx</emphasis></primary>"
msgstr "<primary><emphasis role=\"pkg\">nginx</emphasis></primary>"

msgid "<primary><emphasis role=\"pkg\">lighttpd</emphasis></primary>"
msgstr "<primary><emphasis role=\"pkg\">lighttpd</emphasis></primary>"

msgid "Installing Apache"
msgstr "Memasang Apache"

#, fuzzy
#| msgid "<primary>domain</primary><secondary>virtual</secondary>"
msgid "<primary><command>Apache</command></primary><secondary>installation</secondary>"
msgstr "<primary>domain</primary><secondary>virtual</secondary>"

#, fuzzy
#| msgid "Installing the <emphasis role=\"pkg\">apache2</emphasis> package is all that is needed. It contains all the modules, including the <emphasis>Multi-Processing Modules</emphasis> (MPMs) that affect how Apache handles parallel processing of many requests (those used to be provided in separate <emphasis role=\"pkg\">apache2-mpm-*</emphasis> packages). It will also pull <emphasis role=\"pkg\">apache2-utils</emphasis> containing the command line utilities that we will discover later."
msgid "Installing the <emphasis role=\"pkg\">apache2</emphasis> package is all that is needed. It contains all the modules, including the <emphasis>Multi-Processing Modules</emphasis> (MPMs) that affect how Apache handles parallel processing of many requests, which used to be provided in separate <emphasis role=\"pkg\">apache2-mpm-*</emphasis> packages. It will also pull <emphasis role=\"pkg\">apache2-utils</emphasis> containing the command line utilities that we will discover later."
msgstr "Memasang paket <emphasis role=\"pkg\">apache2</emphasis> adalah semua yang diperlukan. Ini berisi semua modul, termasuk <emphasis>Multi-Processing Modules</emphasis> (MPM) yang mempengaruhi bagaimana Apache menangani pemrosesan paralel dari banyak permintaan (yang biasanya disediakan dalam paket terpisah <emphasis role=\"pkg\">apache2-mpm-*</emphasis>). Ini juga akan menarik <emphasis role=\"pkg\">apache2-utils</emphasis> yang mengandung utilitas baris perintah yang kita akan temui nanti."

msgid "The MPM in use affects significantly the way Apache will handle concurrent requests. With the <emphasis>worker</emphasis> MPM, it uses <emphasis>threads</emphasis> (lightweight processes), whereas with the <emphasis>prefork</emphasis> MPM it uses a pool of processes created in advance. With the <emphasis>event</emphasis> MPM it also uses threads, but the inactive connections (notably those kept open by the HTTP <emphasis>keep-alive</emphasis> feature) are handed back to a dedicated management thread."
msgstr "MPM yang digunakan secara signifikan mempengaruhi cara Apache menangani permintaan bersamaan. Dengan MPM <emphasis>worker</emphasis>, itu menggunakan <emphasis>thread</emphasis> (proses ringan), sedangkan dengan MPM <emphasis>prefork</emphasis> itu menggunakan kumpulan proses yang dibuat terlebih dahulu. Dengan MPM <emphasis>event</emphasis> ini juga menggunakan thread, tapi koneksi yang tidak aktif (terutama yang terus dibuat terbuka dengan fitur HTTP <emphasis>keep-alive</emphasis>) diserahkan kembali ke manajemen thread yang terdedikasi."

#, fuzzy
#| msgid "The Falcot administrators also install <emphasis role=\"pkg\">libapache2-mod-php5</emphasis> so as to include the PHP support in Apache. This causes the default <emphasis>event</emphasis> MPM to be disabled, and <emphasis>prefork</emphasis> to be used instead, since PHP only works under that particular MPM."
msgid "The Falcot administrators also install <emphasis role=\"pkg\">libapache2-mod-php7.3</emphasis> so as to include the PHP support in Apache. This causes the default <emphasis>event</emphasis> MPM to be disabled, and <emphasis>prefork</emphasis> to be used instead. To use the <emphasis>event</emphasis> MPM one can use <emphasis role=\"pkg\">php7.3-fpm</emphasis>."
msgstr "Para administrator Falcot juga memasang <emphasis role=\"pkg\">libapache2-mod-php5</emphasis> untuk menyertakan dukungan PHP di Apache. Hal ini menyebabkan MPM <emphasis>event</emphasis> baku  dinonaktifkan, dan <emphasis>prefork</emphasis> digunakan sebagai pengganti, karena PHP hanya bekerja di bawah MPM tertentu itu."

msgid "<emphasis>SECURITY</emphasis> Execution under the <literal>www-data</literal> user"
msgstr "<emphasis>KEAMANAN</emphasis> Eksekusi di bawah pengguna <literal>www-data</literal>"

msgid "<primary><literal>www-data</literal></primary>"
msgstr "<primary><literal>www-data</literal></primary>"

msgid "<primary>suexec</primary>"
msgstr "<primary>suexec</primary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the sender</secondary>"
msgid "<primary>Apache</primary><secondary><literal>www-data</literal>, user</secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan pada pengirim</secondary>"

msgid "By default, Apache handles incoming requests under the identity of the <literal>www-data</literal> user. This means that a security vulnerability in a CGI script executed by Apache (for a dynamic page) won't compromise the whole system, but only the files owned by this particular user."
msgstr "Secara baku, Apache menangani permintaan masuk di bawah identitas pengguna <literal>www-data</literal>. Ini berarti bahwa kerentanan keamanan di skrip CGI yang dijalankan oleh Apache (untuk halaman dinamis) tidak akan mengkompromi seluruh sistem, tetapi hanya berkas yang dimiliki oleh pengguna tertentu ini."

#, fuzzy
#| msgid "Using the <emphasis>suexec</emphasis> modules allows bypassing this rule so that some CGI scripts are executed under the identity of another user. This is configured with a <literal>SuexecUserGroup <replaceable>user</replaceable><replaceable>group</replaceable></literal> directive in the Apache configuration."
msgid "Using the <emphasis>suexec</emphasis> modules, provided by <emphasis role=\"pkg\">apache2-suexec-*</emphasis> packages, allows bypassing this rule so that some CGI scripts are executed under the identity of another user. This is configured with a <literal>SuexecUserGroup <replaceable>user</replaceable><replaceable>group</replaceable></literal> directive in the Apache configuration."
msgstr "Menggunakan modul <emphasis>suexec</emphasis> memungkinkan melewati aturan ini sehingga beberapa skrip CGI dijalankan di bawah identitas pengguna lain. Ini dikonfigurasi dengan direktif <literal><replaceable>pengguna</replaceable> SuexecUserGroup <replaceable>kelompok</replaceable></literal> dalam konfigurasi Apache."

msgid "<primary><emphasis role=\"pkg\">libapache2-mpm-itk</emphasis></primary>"
msgstr "<primary><emphasis role=\"pkg\">libapache2-mpm-itk</emphasis></primary>"

msgid "Another possibility is to use a dedicated MPM, such as the one provided by <emphasis role=\"pkg\">libapache2-mpm-itk</emphasis>. This particular one has a slightly different behavior: it allows “isolating” virtual hosts (actually, sets of pages) so that they each run as a different user. A vulnerability in one website therefore cannot compromise files belonging to the owner of another website."
msgstr "Kemungkinan lain adalah dengan menggunakan MPM terdedikasi, seperti yang disediakan oleh <emphasis role=\"pkg\">libapache2-mpm-itk</emphasis>. Yang satu ini memiliki perilaku yang sedikit berbeda: ini memungkinkan \"mengisolasi\" host virtual (sebenarnya set halaman) sehingga mereka masing-masing berjalan sebagai pengguna yang berbeda. Kerentanan di satu situs web karena itu tidak bisa mengkompromi berkas milik pemilik situs web lain."

msgid "<emphasis>QUICK LOOK</emphasis> List of modules"
msgstr "<emphasis>LIHAT SEKILAS</emphasis> Daftar modul"

#, fuzzy
#| msgid "The full list of Apache standard modules can be found online. <ulink type=\"block\" url=\"http://httpd.apache.org/docs/2.4/mod/index.html\" />"
msgid "The full list of Apache standard modules can be found online. <ulink type=\"block\" url=\"https://httpd.apache.org/docs/2.4/mod/index.html\" />"
msgstr "Daftar lengkap modul standar Apache dapat ditemukan daring. <ulink type=\"block\" url=\"http://httpd.apache.org/docs/2.4/mod/index.html\" />"

msgid "Apache is a modular server, and many features are implemented by external modules that the main program loads during its initialization. The default configuration only enables the most common modules, but enabling new modules is a simple matter of running <command>a2enmod <replaceable>module</replaceable></command>; to disable a module, the command is <command>a2dismod <replaceable>module</replaceable></command>. These programs actually only create (or delete) symbolic links in <filename>/etc/apache2/mods-enabled/</filename>, pointing at the actual files (stored in <filename>/etc/apache2/mods-available/</filename>)."
msgstr "Apache adalah server yang modular, dan banyak fitur dilaksanakan oleh modul eksternal yang dimuat oleh program utama saat inisialisasinya. Konfigurasi standar hanya memfungsikan modul-modul yang paling umum, tetapi memfungsikan modul cukup dengan menjalankan <command>a2enmod <replaceable>modul</replaceable></command>; untuk menonaktifkan modul, perintahnya adalah <command>a2dismod <replaceable>modul</replaceable></command>. Program ini benar-benar hanya membuat (atau menghapus) link simbolik di <filename>/etc/apache2/mods-enabled/</filename> menunjuk pada file yang sebenarnya (yang disimpan dalam <filename>/etc/apache2/mods-available/</filename>)."

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the sender</secondary>"
msgid "<primary>Apache</primary><secondary><filename>/etc/apache2/mods-available</filename></secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan pada pengirim</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the sender</secondary>"
msgid "<primary>Apache</primary><secondary><filename>/etc/apache2/mods-enabled</filename></secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan pada pengirim</secondary>"

#, fuzzy
#| msgid "<primary>WebRTC</primary><secondary>demonstration</secondary>"
msgid "<primary>Apache</primary><secondary><command>a2enmod</command></secondary>"
msgstr "<primary>Demonstrasi</primary><secondary>WebRTC</secondary>"

#, fuzzy
#| msgid "<emphasis>IN PRACTICE</emphasis> Testing the antivirus"
msgid "<emphasis>IN PRACTICE</emphasis> Checking the configuration"
msgstr "<emphasis>DALAM PRAKTEK</emphasis> Menguji antivirus"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>options</secondary>"
msgid "<primary>Apache</primary><secondary>mod_info</secondary>"
msgstr "<primary>NFS</primary><secondary>opsi</secondary>"

msgid "The <literal>mod_info</literal> module (<command>a2enmod info</command>) allows to access the comprehensive Apache server configuration and information via browser visiting <literal>http://localhost/server-info</literal>. Because it might contain sensitive information, access is only allowed from the local host by default. <ulink type=\"block\" url=\"https://httpd.apache.org/docs/2.4/mod/mod_info.html\" />"
msgstr ""

msgid "With its default configuration, the web server listens on port 80 (as configured in <filename>/etc/apache2/ports.conf</filename>), and serves pages from the <filename>/var/www/html/</filename> directory (as configured in <filename>/etc/apache2/sites-enabled/000-default.conf</filename>)."
msgstr "Dengan konfigurasi bakunya, server web mendengarkan pada port 80 (seperti yang dikonfigurasi di <filename>/etc/apache2/ports.conf</filename>), dan menyajikan halaman dari direktori <filename>/var/www/html/</filename> (seperti yang dikonfigurasi di <filename>/etc/apache2/sites-enabled/000-default.conf</filename>)."

msgid "Adding support for SSL"
msgstr ""

msgid "<primary>HTTPS</primary>"
msgstr "<primary>HTTPS</primary>"

msgid "<primary>HTTP</primary><secondary>secure</secondary>"
msgstr "<primary>HTTP</primary><secondary>aman</secondary>"

#, fuzzy
#| msgid "<primary>client</primary><secondary>NFS</secondary>"
msgid "<primary>Apache</primary><secondary>SSL</secondary>"
msgstr "<primary>klien</primary><secondary>NFS</secondary>"

#, fuzzy
#| msgid "<primary>client</primary><secondary>NFS</secondary>"
msgid "<primary>Apache</primary><secondary>mod_ssl</secondary>"
msgstr "<primary>klien</primary><secondary>NFS</secondary>"

#, fuzzy
#| msgid "Apache 2.4 includes the SSL module required for secure HTTP (HTTPS) out of the box. It just needs to be enabled with <command>a2enmod ssl</command>, then the required directives have to be added to the configuration files. A configuration example is provided in <filename>/etc/apache2/sites-available/default-ssl.conf</filename>. <ulink type=\"block\" url=\"http://httpd.apache.org/docs/2.4/mod/mod_ssl.html\" />"
msgid "Apache 2.4 includes the SSL module (<literal>mod_ssl</literal>) required for secure HTTP (HTTPS) out of the box. It just needs to be enabled with <command>a2enmod ssl</command>, then the required directives have to be added to the configuration files. A configuration example is provided in <filename>/etc/apache2/sites-available/default-ssl.conf</filename>. <ulink type=\"block\" url=\"https://httpd.apache.org/docs/2.4/mod/mod_ssl.html\" />"
msgstr "Apache 2.4 termasuk modul SSL yang diperlukan untuk HTTP yang aman (HTTPS) secara baku. Hanya perlu diaktifkan dengan <command>a2enmod ssl</command>, kemudian direktif yang diperlukan harus ditambahkan ke berkas konfigurasi. Contoh konfigurasi tersedia di <filename>/etc/apache2/sites-available/default-ssl.conf</filename>. <ulink type=\"block\" url=\"http://httpd.apache.org/docs/2.4/mod/mod_ssl.html\" />"

msgid "If you want to generate trusted certificates, you can follow section <xref linkend=\"sect.trusted-certs\" /> and then adjust the following variables:"
msgstr ""

msgid ""
"\n"
"SSLCertificateFile      /etc/letsencrypt/live/<replaceable>DOMAIN</replaceable>/fullchain.pem\n"
"SSLCertificateKeyFile   /etc/letsencrypt/live/<replaceable>DOMAIN</replaceable>/privkey.pem\n"
"SSLCertificateChainFile /etc/letsencrypt/live/<replaceable>DOMAIN</replaceable>/chain.pem\n"
"SSLCACertificateFile    /etc/ssl/certs/ca-certificates.crt"
msgstr ""

#, fuzzy
#| msgid "Some extra care must be taken if you want to favor SSL connections with <emphasis>Perfect Forward Secrecy</emphasis> (those connections use ephemeral session keys ensuring that a compromission of the server's secret key does not result in the compromission of old encrypted traffic that could have been stored while sniffing on the network). Have a look at Mozilla's recommandations in particular: <ulink type=\"block\" url=\"https://wiki.mozilla.org/Security/Server_Side_TLS#Apache\" />"
msgid "Some extra care must be taken if you want to favor SSL connections with <emphasis>Perfect Forward Secrecy</emphasis> (those connections use ephemeral session keys ensuring that a compromission of the server's secret key does not result in the compromission of old encrypted traffic that could have been stored while sniffing on the network). Have a look at Mozilla's recommendations in particular: <ulink type=\"block\" url=\"https://wiki.mozilla.org/Security/Server_Side_TLS#Apache\" />"
msgstr "Mesti lebih hati-hati jika Anda ingin lebih menyukai koneksi SSL dengan <emphasis>Perfect Forward Secrecy</emphasis> (koneksi-koneksi tersebut menggunakan kunci sesi ephemeral yang memastikan bahwa terungkapnya kunci rahasia server tidak mengakibatkan terungkapnya lalu lintas lama yang terenkripsi yang mungkin tersimpan ketika menguping pada jaringan). Silakan lihat pada rekomendasi Mozilla, khususnya: <ulink type=\"block\" url=\"https://wiki.mozilla.org/Security/Server_Side_TLS#Apache\" />"

msgid "<primary><emphasis>Perfect Forward Secrecy</emphasis></primary>"
msgstr "<primary><emphasis>Perfect Forward Secrecy</emphasis></primary>"

msgid "As an alternative to the standard SSL module, there is an extension module called <literal>mod_gnutls</literal>, which is shipped with the <emphasis role=\"pkg\">libapache2-mod-gnutls</emphasis> package and enabled with the <command>a2enmod gnutls</command>. <ulink type=\"block\" url=\"https://mod.gnutls.org/\" />"
msgstr ""

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>options</secondary>"
msgid "<primary>Apache</primary><secondary>mod_gnutls</secondary>"
msgstr "<primary>NFS</primary><secondary>opsi</secondary>"

msgid "Configuring Virtual Hosts"
msgstr "Mengkonfigurasi Host Virtual"

#, fuzzy
#| msgid "<primary>domain</primary><secondary>virtual</secondary>"
msgid "<primary>Apache</primary><secondary>Virtual Hosts</secondary>"
msgstr "<primary>domain</primary><secondary>virtual</secondary>"

#, fuzzy
#| msgid "<primary>domain</primary><secondary>virtual</secondary>"
msgid "<primary>Apache</primary><secondary><literal>VirtualHost</literal></secondary>"
msgstr "<primary>domain</primary><secondary>virtual</secondary>"

msgid "A virtual host is an extra identity for the web server."
msgstr "Suatu host virtual adalah identitas tambahan untuk server web."

msgid "<primary>virtual host</primary>"
msgstr "<primary>host virtual</primary>"

msgid "Apache considers two different kinds of virtual hosts: those that are based on the IP address (or the port), and those that rely on the domain name of the web server. The first method requires allocating a different IP address (or port) for each site, whereas the second one can work on a single IP address (and port), and the sites are differentiated by the hostname sent by the HTTP client (which only works in version 1.1 of the HTTP protocol — fortunately that version is old enough that all clients use it already)."
msgstr "Apache menganggap dua macam host virtual: yang didasarkan pada alamat IP (atau port), dan yang mengandalkan nama domain dari server web. Metode pertama memerlukan mengalokasikan alamat IP yang berbeda (atau port) untuk setiap situs, sedangkan yang kedua dapat bekerja pada satu alamat IP (dan port), dan situs dibedakan oleh nama host yang dikirim oleh klien HTTP (yang hanya bekerja di versi 1.1 dari protokol HTTP — untungnya versi tersebut sudah cukup tua sehingga semua klien sudah menggunakannya)."

msgid "The (increasing) scarcity of IPv4 addresses usually favors the second method; however, it is made more complex if the virtual hosts need to provide HTTPS too, since the SSL protocol hasn't always provided for name-based virtual hosting; the SNI extension (<emphasis>Server Name Indication</emphasis>) that allows such a combination is not handled by all browsers. When several HTTPS sites need to run on the same server, they will usually be differentiated either by running on a different port or on a different IP address (IPv6 can help there)."
msgstr "(Semakin) langkanya alamat IPv4 biasanya lebih mengarah ke metode kedua; namun, itu dibuat lebih kompleks jika host virtual perlu menyediakan HTTPS juga, karena protokol SSL tidak selalu disediakan untuk berbasis nama virtual hosting; ekstensi SNI (<emphasis>Server Name Indication</emphasis>) yang memungkinkan kombinasi tersebut tidak ditangani oleh semua browser. Ketika beberapa situs HTTPS perlu menjalankan pada server yang sama, mereka akan biasanya dibedakan baik dengan berjalan pada port lain atau pada alamat IP yang berbeda (IPv6 dapat membantu di sana)."

msgid "The default configuration for Apache 2 enables name-based virtual hosts. In addition, a default virtual host is defined in the <literal>/etc/apache2/sites-enabled/000-default.conf</literal> file; this virtual host will be used if no host matching the request sent by the client is found."
msgstr "Konfigurasi default untuk Apache 2 memfungsikan host virtual berbasis nama. Selain itu, sebuah host virtual default didefinisikan dalam berkas <literal>/etc/apache2/sites-enabled/000-default.conf</literal>; host virtual ini akan digunakan jika tidak ditemukan host yang cocok dengan permintaan yang dikirim oleh klien."

msgid "<emphasis>CAUTION</emphasis> First virtual host"
msgstr "<emphasis>HATI-HATI</emphasis> Host virtual pertama"

msgid "Requests concerning unknown virtual hosts will always be served by the first defined virtual host, which is why we defined <literal>www.falcot.com</literal> first here."
msgstr "Permintaan mengenai host virtual yang tak dikenal akan selalu disajikan oleh host virtual yang pertama didefinisikan, itulah sebabnya mengapa kita definisikan <literal>www.falcot.com</literal> pertama di sini."

msgid "<emphasis>QUICK LOOK</emphasis> Apache supports SNI"
msgstr "<emphasis>LIHAT SEKILAS</emphasis> Apache mendukung SNI"

msgid "<primary>Server Name Indication</primary>"
msgstr "<primary>Server Name Indication</primary>"

msgid "The Apache server supports an SSL protocol extension called <emphasis>Server Name Indication</emphasis> (SNI). This extension allows the browser to send the hostname of the web server during the establishment of the SSL connection, much earlier than the HTTP request itself, which was previously used to identify the requested virtual host among those hosted on the same server (with the same IP address and port). This allows Apache to select the most appropriate SSL certificate for the transaction to proceed."
msgstr "Server Apache mendukung ekstensi protokol SSL yang bernama <emphasis>Server Name Indication</emphasis> (SNI). Ekstensi ini memungkinkan peramban untuk mengirim nama host server web selama pembentukan sambungan SSL, jauh lebih awal daripada permintaan HTTP itu sendiri, yang sebelumnya digunakan untuk mengidentifikasi host virtual yang diminta di antara yang di-host pada server yang sama (dengan alamat IP dan port yang sama). Hal ini memungkinkan Apache untuk memilih sertifikat SSL yang paling tepat agar transaksi dapat berlanjut."

msgid "Before SNI, Apache would always use the certificate defined in the default virtual host. Clients trying to access another virtual host would then display warnings, since the certificate they received didn't match the website they were trying to access. Fortunately, most browsers now work with SNI; this includes Microsoft Internet Explorer starting with version 7.0 (starting on Vista), Mozilla Firefox starting with version 2.0, Apple Safari since version 3.2.1, and all versions of Google Chrome."
msgstr "Sebelum SNI, Apache akan selalu menggunakan sertifikat yang didefinisikan dalam host virtual baku. Klien yang mencoba untuk mengakses host virtual lain kemudian akan menampilkan peringatan, karena sertifikat yang mereka terima tidak cocok dengan situs web mereka coba akses. Untungnya, sebagian besar peramban sekarang bekerja dengan SNI; ini termasuk Microsoft Internet Explorer mulai versi 7.0 (mulai pada Vista), Mozilla Firefox dimulai dengan versi 2.0, Apple Safari sejak versi 3.2.1 dan semua versi Google Chrome."

msgid "The Apache package provided in Debian is built with support for SNI; no particular configuration is therefore needed."
msgstr "Paket Apache yang tersedia di Debian dibangun dengan dukungan untuk SNI; maka tidak ada konfigurasi tertentu yang diperlukan."

msgid "Care should also be taken to ensure that the configuration for the first virtual host (the one used by default) does enable TLSv1, since Apache uses the parameters of this first virtual host to establish secure connections, and they had better allow them!"
msgstr "Perhatian harus diberikan untuk memastikan bahwa konfigurasi untuk host virtual pertama (yang digunakan secara default) mengaktifkan TLSv1, karena Apache menggunakan parameter host virtual pertama ini untuk membangun koneksi yang aman, dan lebih baik itu difungsikan!"

msgid "Each extra virtual host is then described by a file stored in <filename>/etc/apache2/sites-available/</filename>. Setting up a website for the <literal>falcot.org</literal> domain is therefore a simple matter of creating the following file, then enabling the virtual host with <command>a2ensite www.falcot.org</command>."
msgstr "Masing-masing host virtual ekstra ini kemudian digambarkan oleh sebuah berkas yang disimpan dalam <filename>/etc/apache2/situs-available/</filename>. Maka menyiapkan sebuah situs web untuk domain <literal>falcot.org</literal> adalah cukup dengan sekedar membuat berkas berikut, kemudian memfungsikan host virtual dengan <command>a2ensite www.falcot.org</command>."

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the recipient</secondary>"
msgid "<primary>Apache</primary><secondary><filename>/etc/apache2/sites-available</filename></secondary>"
msgstr "<primary>surel</primary><secondary>penyaringan pada penerima</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the sender</secondary>"
msgid "<primary>Apache</primary><secondary><filename>/etc/apache2/sites-enabled</filename></secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan pada pengirim</secondary>"

#, fuzzy
#| msgid "<primary>WebRTC</primary><secondary>demonstration</secondary>"
msgid "<primary>Apache</primary><secondary><command>a2ensite</command></secondary>"
msgstr "<primary>Demonstrasi</primary><secondary>WebRTC</secondary>"

msgid "The <filename>/etc/apache2/sites-available/www.falcot.org.conf</filename> file"
msgstr "Berkas <filename>/etc/apache2/sites-available/www.falcot.org.conf</filename>"

#, fuzzy
#| msgid ""
#| "\n"
#| "&lt;VirtualHost *:80&gt;\n"
#| "ServerName www.falcot.org\n"
#| "ServerAlias falcot.org\n"
#| "DocumentRoot /srv/www/www.falcot.org\n"
#| "&lt;/VirtualHost&gt;"
msgid ""
"<![CDATA[\n"
"<VirtualHost *:80>\n"
"ServerName   www.falcot.org\n"
"ServerAlias  falcot.org\n"
"DocumentRoot /srv/www/www.falcot.org\n"
"</VirtualHost>\n"
"]]>"
msgstr ""
"\n"
"&lt;VirtualHost *:80&gt;\n"
"ServerName www.falcot.org\n"
"ServerAlias falcot.org\n"
"DocumentRoot /srv/www/www.falcot.org\n"
"&lt;/VirtualHost&gt;"

msgid "The Apache server, as configured so far, uses the same log files for all virtual hosts (although this could be changed by adding <literal>CustomLog</literal> directives in the definitions of the virtual hosts). It therefore makes good sense to customize the format of this log file to have it include the name of the virtual host. This can be done by creating a <filename>/etc/apache2/conf-available/customlog.conf</filename> file that defines a new format for all log files (with the <literal>LogFormat</literal> directive) and by enabling it with <command>a2enconf customlog</command>. The <literal>CustomLog</literal> line must also be removed (or commented out) from the <filename>/etc/apache2/sites-available/000-default.conf</filename> file."
msgstr "Apache server, yang dikonfigurasi sejauh ini, menggunakan berkas log yang sama untuk semua host virtual (walaupun ini bisa diganti dengan menambahkan direktif <literal>CustomLog</literal> dalam definisi host virtual). Maka masuk akal untuk menyesuaikan format berkas log ini agar menyertakan nama host virtual. Ini dapat dilakukan dengan menciptakan sebuah berkas <filename>/etc/apache2/conf-available/customlog.conf</filename> yang menentukan format baru untuk semua berkas log (dengan direktif <literal>LogFormat</literal>) dan memfungsikannya dengan <command>a2enconf customlog </command>. Baris <literal>CustomLog</literal> harus juga akan dihapus (atau dijadikan komentar) dari berkas <filename>/etc/apache2/sites-available/000-default.conf</filename>."

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Apache</primary><secondary><literal>CustomLog</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Apache</primary><secondary><literal>LogFormat</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary><literal>Options</literal>, Apache directive</primary>"
msgid "<primary><literal>CustomLog</literal>, Apache directive</primary>"
msgstr "<primary><literal>Options</literal>, direktif Apache</primary>"

#, fuzzy
#| msgid "<primary><literal>Order</literal>, Apache directive</primary>"
msgid "<primary><literal>LogFormat</literal>, Apache directive</primary>"
msgstr "<primary><literal>Order</literal>, direktif Apache</primary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the recipient</secondary>"
msgid "<primary>Apache</primary><secondary><filename>/etc/apache2/conf-available</filename></secondary>"
msgstr "<primary>surel</primary><secondary>penyaringan pada penerima</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the sender</secondary>"
msgid "<primary>Apache</primary><secondary><filename>/etc/apache2/conf-enabled</filename></secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan pada pengirim</secondary>"

#, fuzzy
#| msgid "<primary>WebRTC</primary><secondary>demonstration</secondary>"
msgid "<primary>Apache</primary><secondary><command>a2enconf</command></secondary>"
msgstr "<primary>Demonstrasi</primary><secondary>WebRTC</secondary>"

#, fuzzy
#| msgid "The <filename>/etc/apache2/conf.d/customlog.conf</filename> file"
msgid "The <filename>/etc/apache2/conf-available/customlog.conf</filename> file"
msgstr "Berkas <filename>/etc/apache2/conf.d/customlog.conf</filename>"

msgid ""
"\n"
"# New log format including (virtual) host name\n"
"LogFormat \"%v %h %l %u %t \\\"%r\\\" %&gt;s %b \\\"%{Referer}i\\\" \\\"%{User-Agent}i\\\"\" vhost\n"
"\n"
"# Now let's use this \"vhost\" format by default\n"
"CustomLog /var/log/apache2/access.log vhost"
msgstr ""
"\n"
"# Format log baru termasuk nama host (virtual)\n"
"LogFormat \"%v %h %l %u %t \\\"%r\\\" %&gt;s %b \\\"%{Referer}i\\\" \\\"%{User-Agent}i\\\"\" vhost\n"
"\n"
"# Sekarang mari kita pakai format \"vhost\" ini secara baku\n"
"CustomLog /var/log/apache2/access.log vhost"

msgid "Common Directives"
msgstr "Direktif Umum"

msgid "This section briefly reviews some of the commonly-used Apache configuration directives."
msgstr "Bagian ini mengulas secara singkat beberapa direktif konfigurasi Apache yang sering digunakan."

msgid "<primary>Apache directives</primary>"
msgstr "<primary>Direktif Apache</primary>"

msgid "<primary>directives, Apache</primary>"
msgstr "<primary>direktif, Apache</primary>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Apache</primary><secondary>directives</secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

msgid "The main configuration file usually includes several <literal>Directory</literal> blocks; they allow specifying different behaviors for the server depending on the location of the file being served. Such a block commonly includes <literal>Options</literal> and <literal>AllowOverride</literal> directives."
msgstr "Berkas konfigurasi utama biasanya memuat beberapa blok <literal>Directory</literal> blok; mereka memungkinkan menentukan perilaku yang berbeda untuk server tergantung pada lokasi berkas yang diminta. Blok tersebut umumnya memuat direktif <literal>Options</literal> dan <literal>AllowOverride</literal>."

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Apache</primary><secondary><literal>Directory</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>options</secondary>"
msgid "<primary>Apache</primary><secondary><literal>Options</literal></secondary>"
msgstr "<primary>NFS</primary><secondary>opsi</secondary>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Apache</primary><secondary><literal>AllowOverride</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering</secondary>"
msgid "<primary>Apache</primary><secondary><literal>DirectoryIndex</literal></secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan</secondary>"

msgid "Directory block"
msgstr "Blok direktori"

#, fuzzy
#| msgid ""
#| "\n"
#| "&lt;Directory /var/www&gt;\n"
#| "Options Includes FollowSymlinks\n"
#| "AllowOverride All\n"
#| "DirectoryIndex index.php index.html index.htm\n"
#| "&lt;/Directory&gt;"
msgid ""
"<![CDATA[\n"
"<Directory /var/www>\n"
"Options Includes FollowSymlinks\n"
"AllowOverride All\n"
"DirectoryIndex index.php index.html index.htm\n"
"</Directory>\n"
"]]>"
msgstr ""
"\n"
"&lt;Directory /var/www&gt;\n"
"Options Includes FollowSymlinks\n"
"AllowOverride All\n"
"DirectoryIndex index.php index.html index.htm\n"
"&lt;/Directory&gt;"

msgid "The <literal>DirectoryIndex</literal> directive contains a list of files to try when the client request matches a directory. The first existing file in the list is used and sent as a response."
msgstr "Direktif <literal>DirectoryIndex</literal> berisi daftar berkas yang akan dicoba ketika permintaan klien cocok dengan suatu direktori. Berkas pertama yang ada dalam daftar digunakan dan dikirim sebagai respon."

msgid "<primary><literal>DirectoryIndex</literal>, Apache directive</primary>"
msgstr "<primary><literal>DirectoryIndex</literal>, direktif Apache</primary>"

msgid "The <literal>Options</literal> directive is followed by a list of options to enable. The <literal>None</literal> value disables all options; correspondingly, <literal>All</literal> enables them all except <literal>MultiViews</literal>. Available options include:"
msgstr "Direktif <literal>Options</literal> diikuti oleh daftar pilihan yang diaktifkan. Nilai <literal>None</literal> menonaktifkan semua pilihan; sejalan dengan itu, <literal>All</literal> memfungsikan mereka semua kecuali <literal>MultiViews</literal>. Pilihan yang tersedia meliputi:"

msgid "<primary><literal>Options</literal>, Apache directive</primary>"
msgstr "<primary><literal>Options</literal>, direktif Apache</primary>"

msgid "<primary><literal>AllowOverride</literal>, Apache directive</primary>"
msgstr "<primary><literal>AllowOverride</literal>, direktif Apache</primary>"

#, fuzzy
#| msgid "<literal>ExecCGI</literal> indicates that CGI scripts can be executed. <indexterm><primary><literal>ExecCGI</literal>, Apache directive</primary></indexterm>"
msgid "<literal>ExecCGI</literal> indicates that CGI scripts can be executed."
msgstr "<literal>ExecCGI</literal> menunjukkan bahwa skrip CGI dapat dijalankan. <indexterm><primary><literal>ExecCGI</literal>, direktif Apache</primary></indexterm>"

#, fuzzy
#| msgid "<primary><literal>Order</literal>, Apache directive</primary>"
msgid "<primary><literal>ExecCGI</literal>, Apache directive</primary>"
msgstr "<primary><literal>Order</literal>, direktif Apache</primary>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Apache</primary><secondary><literal>ExecCGI</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<literal>FollowSymlinks</literal> tells the server that symbolic links can be followed, and that the response should contain the contents of the target of such links. <indexterm><primary><literal>FollowSymlinks</literal>, Apache directive</primary></indexterm>"
msgid "<literal>FollowSymlinks</literal> tells the server that symbolic links can be followed, and that the response should contain the contents of the target of such links."
msgstr "<literal>FollowSymlinks</literal> memberitahu server bahwa taut simbolik dapat diikuti, dan bahwa respon harus berisi isi dari target taut tersebut. <indexterm><primary><literal>FollowSymlinks</literal>, direktif Apache</primary></indexterm>"

#, fuzzy
#| msgid "<primary><literal>Allow from</literal>, Apache directive</primary>"
msgid "<primary><literal>FollowSymlinks</literal>, Apache directive</primary>"
msgstr "<primary><literal>Allow from</literal>, direktif Apache</primary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering</secondary>"
msgid "<primary>Apache</primary><secondary><literal>FollowSymlinks</literal></secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan</secondary>"

#, fuzzy
#| msgid "<literal>SymlinksIfOwnerMatch</literal> also tells the server to follow symbolic links, but only when the link and the its target have the same owner. <indexterm><primary><literal>SymlinksIfOwnerMatch</literal>, Apache directive</primary></indexterm>"
msgid "<literal>SymlinksIfOwnerMatch</literal> also tells the server to follow symbolic links, but only when the link and the its target have the same owner."
msgstr "<literal>SymlinksIfOwnerMatch</literal> juga memberitahu server untuk mengikuti taut simbolik, tetapi hanya bila taut dan target memiliki pemilik yang sama. <indexterm><primary><literal>SymlinksIfOwnerMatch</literal>, direktif Apache</primary></indexterm>"

#, fuzzy
#| msgid "<primary><literal>Order</literal>, Apache directive</primary>"
msgid "<primary><literal>SymlinksIfOwnerMatch</literal>, Apache directive</primary>"
msgstr "<primary><literal>Order</literal>, direktif Apache</primary>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Apache</primary><secondary><literal>SymlinksIfOwnerMatch</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

#, fuzzy
#| msgid "<literal>Includes</literal> enables <emphasis>Server Side Includes</emphasis> (<emphasis>SSI</emphasis> for short). These are directives embedded in HTML pages and executed on the fly for each request. <indexterm><primary><literal>Includes</literal>, Apache directive</primary></indexterm>"
msgid "<literal>Includes</literal> enables <emphasis>Server Side Includes</emphasis> (<emphasis>SSI</emphasis> for short). These are directives embedded in HTML pages and executed on the fly for each request."
msgstr "<literal>Includes</literal> memfungsikan <emphasis>Server Side Includes</emphasis> (disingkat <emphasis>SSI</emphasis>). Ini adalah direktif yang tertanam di halaman HTML dan dieksekusi sambil jalan untuk setiap permintaan. <indexterm><primary><literal>Includes</literal>, direktif Apache</primary></indexterm>"

#, fuzzy
#| msgid "<primary><literal>Order</literal>, Apache directive</primary>"
msgid "<primary><literal>Includes</literal>, Apache directive</primary>"
msgstr "<primary><literal>Order</literal>, direktif Apache</primary>"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>client</secondary>"
msgid "<primary>Apache</primary><secondary><literal>Includes</literal></secondary>"
msgstr "<primary>NFS</primary><secondary>klien</secondary>"

#, fuzzy
#| msgid "<literal>Includes</literal> enables <emphasis>Server Side Includes</emphasis> (<emphasis>SSI</emphasis> for short). These are directives embedded in HTML pages and executed on the fly for each request. <indexterm><primary><literal>Includes</literal>, Apache directive</primary></indexterm>"
msgid "<literal>IncludesNOEXEC</literal> allows <emphasis>Server Side Includes</emphasis> (<emphasis>SSI</emphasis>) but disables the <literal>exec</literal> command and limits the <literal>include</literal> directive to text/markup files."
msgstr "<literal>Includes</literal> memfungsikan <emphasis>Server Side Includes</emphasis> (disingkat <emphasis>SSI</emphasis>). Ini adalah direktif yang tertanam di halaman HTML dan dieksekusi sambil jalan untuk setiap permintaan. <indexterm><primary><literal>Includes</literal>, direktif Apache</primary></indexterm>"

#, fuzzy
#| msgid "<primary><literal>Order</literal>, Apache directive</primary>"
msgid "<primary><literal>IncludesNOEXEC</literal>, Apache directive</primary>"
msgstr "<primary><literal>Order</literal>, direktif Apache</primary>"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>client</secondary>"
msgid "<primary>Apache</primary><secondary><literal>IncludesNOEXEC</literal></secondary>"
msgstr "<primary>NFS</primary><secondary>klien</secondary>"

#, fuzzy
#| msgid "<literal>Indexes</literal> tells the server to list the contents of a directory if the HTTP request sent by the client points at a directory without an index file (ie, when no files mentioned by the <literal>DirectoryIndex</literal> directive exists in this directory). <indexterm><primary><literal>Indexes</literal>, Apache directive</primary></indexterm>"
msgid "<literal>Indexes</literal> tells the server to list the contents of a directory if the HTTP request sent by the client points at a directory without an index file (i.e., when no files mentioned by the <literal>DirectoryIndex</literal> directive exists in this directory)."
msgstr "<literal>Indexes</literal> memberitahu server untuk memberikan daftar isi direktori jika permintaan HTTP yang dikirim oleh klien menunjuk ke direktori tanpa berkas indeks (yaitu, ketika tidak ada berkas yang disebutkan oleh direktif <literal>DirectoryIndex</literal> yang ada dalam direktori ini). <indexterm><primary><literal>Indeks</literal>, direktif Apache</primary></indexterm>"

#, fuzzy
#| msgid "<primary><literal>Order</literal>, Apache directive</primary>"
msgid "<primary><literal>Indexes</literal>, Apache directive</primary>"
msgstr "<primary><literal>Order</literal>, direktif Apache</primary>"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>client</secondary>"
msgid "<primary>Apache</primary><secondary><literal>Indexes</literal></secondary>"
msgstr "<primary>NFS</primary><secondary>klien</secondary>"

#, fuzzy
#| msgid "<literal>MultiViews</literal> enables content negotiation; this can be used by the server to return a web page matching the preferred language as configured in the browser. <indexterm><primary><literal>MultiViews</literal>, Apache directive</primary></indexterm>"
msgid "<literal>MultiViews</literal> enables content negotiation; this can be used by the server to return a web page matching the preferred language as configured in the browser."
msgstr "<literal>MultiViews</literal> memungkinkan negosiasi konten; ini dapat digunakan oleh server untuk mengembalikan halaman web yang cocok dengan bahasa pilihan sebagaimana dikonfigurasi dalam peramban. <indexterm><primary><literal>MultiViews</literal>, direktif Apache</primary></indexterm>"

#, fuzzy
#| msgid "<primary><literal>Options</literal>, Apache directive</primary>"
msgid "<primary><literal>MultiViews</literal>, Apache directive</primary>"
msgstr "<primary><literal>Options</literal>, direktif Apache</primary>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Apache</primary><secondary><literal>MultiViews</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

msgid "<emphasis>BACK TO BASICS</emphasis> <filename>.htaccess</filename> file"
msgstr "<emphasis>KEMBALI KE DASAR</emphasis> berkas <filename>.htaccess</filename>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering</secondary>"
msgid "<primary>Apache</primary><secondary><filename>.htaccess</filename></secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan</secondary>"

msgid "The <filename>.htaccess</filename> file contains Apache configuration directives enforced each time a request concerns an element of the directory where it is stored. The scope of these directives also recurses to all the subdirectories within."
msgstr "Berkas <filename>.htaccess</filename> berisi direktif konfigurasi Apache yang diberlakukan setiap kali suatu permintaan terkait dengan elemen dari direktori tempat itu disimpan. Lingkup direktif ini juga berlaku rekursif untuk semua subdirektori di dalamnya."

msgid "<primary><filename>.htaccess</filename></primary>"
msgstr "<primary><filename>.htaccess</filename></primary>"

msgid "Most of the directives that can occur in a <literal>Directory</literal> block are also legal in a <filename>.htaccess</filename> file."
msgstr "Sebagian besar direktif yang bisa muncul dalam blok <literal>Directory</literal> juga legal dalam berkas <filename>.htaccess</filename>."

msgid "The <literal>AllowOverride</literal> directive lists all the options that can be enabled or disabled by way of a <filename>.htaccess</filename> file. A common use of this option is to restrict <literal>ExecCGI</literal>, so that the administrator chooses which users are allowed to run programs under the web server's identity (the <literal>www-data</literal> user)."
msgstr "Direktif <literal>AllowOverride</literal> mencantumkan semua pilihan yang dapat diaktifkan atau dinonaktifkan melalui berkas <filename>.htaccess</filename>. Penggunaan umum pilihan ini adalah untuk membatasi <literal>ExecCGI</literal>, sehingga administrator memilih pengguna yang diizinkan untuk menjalankan program di bawah identitas server web (pengguna <literal>www-data</literal>)."

msgid "Requiring Authentication"
msgstr "Memerlukan Otentikasi"

msgid "<primary>web authentication</primary>"
msgstr "<primary>otentikasi web</primary>"

#, fuzzy
#| msgid "<primary>WebRTC</primary><secondary>demonstration</secondary>"
msgid "<primary>Apache</primary><secondary>password-based authentication</secondary>"
msgstr "<primary>Demonstrasi</primary><secondary>WebRTC</secondary>"

msgid "In some circumstances, access to part of a website needs to be restricted, so only legitimate users who provide a username and a password are granted access to the contents."
msgstr "Dalam beberapa keadaan, akses ke sebagian dari sebuah situs web harus dibatasi, jadi hanya pengguna sah yang memberikan nama pengguna dan kata sandi yang diberikan akses ke isi."

msgid "<filename>.htaccess</filename> file requiring authentication"
msgstr "berkas <filename>.htaccess</filename> yang memerlukan otentikasi"

msgid ""
"\n"
"Require valid-user\n"
"AuthName \"Private directory\"\n"
"AuthType Basic\n"
"AuthUserFile /etc/apache2/authfiles/htpasswd-private"
msgstr ""
"\n"
"Require valid-user\n"
"AuthName \"Private directory\"\n"
"AuthType Basic\n"
"AuthUserFile /etc/apache2/authfiles/htpasswd-private"

msgid "<emphasis>SECURITY</emphasis> No security"
msgstr "<emphasis>KEAMANAN</emphasis> Tidak ada keamanan"

msgid "The authentication system used in the above example (<literal>Basic</literal>) has minimal security as the password is sent in clear text (it is only encoded as <emphasis>base64</emphasis>, which is a simple encoding rather than an encryption method). It should also be noted that the documents “protected” by this mechanism also go over the network in the clear. If security is important, the whole HTTP connection should be encrypted with SSL."
msgstr "Sistem otentikasi yang digunakan dalam contoh di atas (<literal>Basic</literal>) memiliki keamanan minimal karena kata sandi dikirim dalam bentuk teks (hanya dikodekan sebagai <emphasis>base64</emphasis>, yang merupakan pengkodean sederhana, bukan suatu metode enkripsi). Juga harus dicatat bahwa dokumen-dokumen yang \"dilindungi\" oleh mekanisme ini juga pergi melalui jaringan dalam keadaan polos. Jika keamanan penting, seluruh sambungan HTTP harus dienkripsi dengan SSL."

#, fuzzy
#| msgid "The <filename>/etc/apache2/authfiles/htpasswd-private</filename> file contains a list of users and passwords; it is commonly manipulated with the <command>htpasswd</command> command. For example, the following command is used to add a user or change their password: <indexterm><primary><command>htpasswd</command></primary></indexterm>"
msgid "The <filename>/etc/apache2/authfiles/htpasswd-private</filename> file contains a list of users and passwords; it is commonly manipulated with the <command>htpasswd</command> command. For example, the following command is used to add a user or change their password:"
msgstr "Berkas <filename>/etc/apache2/authfiles/htpasswd-private</filename> berisi daftar pengguna dan kata sandi; itu umumnya dimanipulasi dengan perintah <command>htpasswd</command>. Sebagai contoh, perintah berikut digunakan untuk menambahkan pengguna atau mengubah sandi: <indexterm><primary><command>htpasswd</command></primary></indexterm>"

#, fuzzy
#| msgid "<primary><command>smbd</command></primary>"
msgid "<primary><command>htpasswd</command></primary>"
msgstr "<primary><command>smbd</command></primary>"

#, fuzzy
#| msgid "<primary>alias</primary><secondary>virtual alias domain</secondary>"
msgid "<primary>Apache</primary><secondary><literal><command>htpasswd</command></literal></secondary>"
msgstr "<primary>alias</primary><secondary>domain alias virtual</secondary>"

msgid ""
"\n"
"<computeroutput># </computeroutput><userinput>htpasswd /etc/apache2/authfiles/htpasswd-private <replaceable>user</replaceable>\n"
"</userinput><computeroutput>New password:\n"
"Re-type new password:\n"
"Adding password for user <replaceable>user</replaceable>\n"
"</computeroutput>"
msgstr ""
"\n"
"<computeroutput># </computeroutput><userinput>htpasswd /etc/apache2/authfiles/htpasswd-private <replaceable>user</replaceable>\n"
"</userinput><computeroutput>New password:\n"
"Re-type new password:\n"
"Adding password for user <replaceable>user</replaceable>\n"
"</computeroutput>"

msgid "Restricting Access"
msgstr "Membatasi Akses"

msgid "<primary>web access restriction</primary>"
msgstr "<primary>pembatasan akses web</primary>"

#, fuzzy
#| msgid "<primary>WebRTC</primary><secondary>demonstration</secondary>"
msgid "<primary>Apache</primary><secondary>IP-based authentication</secondary>"
msgstr "<primary>Demonstrasi</primary><secondary>WebRTC</secondary>"

#, fuzzy
#| msgid "The <literal>Require</literal> directive controls access restrictions for a directory (and its subdirectories, recursively)."
msgid "The <literal>Require</literal> directive controls access restrictions for a directory (and its subdirectories, recursively). <ulink type=\"block\" url=\"https://httpd.apache.org/docs/2.4/howto/access.html\" />"
msgstr "Direktif <literal>Require</literal> mengendalikan pembatasan akses untuk suatu direktori (dan subdirektorinya, secara rekursif)."

msgid "<primary><literal>Require</literal>, Apache directive</primary>"
msgstr "<primary><literal>Require</literal>, direktif Apache</primary>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Apache</primary><secondary><literal>Require</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

msgid "It can be used to restrict access based on many criteria; we will stop at describing access restriction based on the IP address of the client, but it can be made much more powerful than that, especially when several <literal>Require</literal> directives are combined within a <literal>RequireAll</literal> block."
msgstr "Dapat digunakan untuk membatasi akses berdasarkan kepada banyak kriteria; kita akan berhenti di menggambarkan pembatasan akses berdasarkan alamat IP dari klien, tapi itu bisa dibuat jauh lebih kuat daripada itu, terutama ketika beberapa direktif <literal>Require</literal> digabung dalam sebuah blok <literal>RequireAll</literal>."

msgid "Only allow from the local network"
msgstr "Hanya mengizinkan dari jaringan lokal"

msgid "Require ip 192.168.0.0/16"
msgstr "Require ip 192.168.0.0/16"

msgid "<emphasis>ALTERNATIVE</emphasis> Old syntax"
msgstr "<emphasis>ALTERNATIF</emphasis> Sintaks lama"

#, fuzzy
#| msgid "The <literal>Require</literal> syntax is only available in Apache 2.4 (the version in <emphasis role=\"distribution\">Jessie</emphasis>). For users of <emphasis role=\"distribution\">Wheezy</emphasis>, the Apache 2.2 syntax is different, and we describe it here mainly for reference, although it can also be made available in Apache 2.4 using the <literal>mod_access_compat</literal> module."
msgid "The <literal>Require</literal> syntax is only available in Apache 2.4 (the version shipped since <emphasis role=\"distribution\">Jessie</emphasis>). For users of <emphasis role=\"distribution\">Wheezy</emphasis>, the Apache 2.2 syntax is different, and we describe it here mainly for reference, although it can also be made available in Apache 2.4 using the <literal>mod_access_compat</literal> module."
msgstr "Sintaks <literal>Require</literal> hanya tersedia di Apache 2.4 (versi di <emphasis role=\"distribution\">Jessie</emphasis>). Untuk pengguna <emphasis role=\"distribution\">Wheezy</emphasis>, sintaks Apache 2.2 berbeda, dan kami menjelaskan di sini hanya untuk referensi, walaupun itu juga dapat dibuat tersedia di Apache 2.4 menggunakan modul <literal>mod_access_compat</literal>."

msgid "The <literal>Allow from</literal> and <literal>Deny from</literal> directives control access restrictions for a directory (and its subdirectories, recursively)."
msgstr "Direktif <literal>Allow from</literal> dan <literal>Deny from</literal> mengendalikan pembatasan akses untuk suatu direktori (dan subdirektorinya, secara rekursif)."

msgid "<primary><literal>Allow from</literal>, Apache directive</primary>"
msgstr "<primary><literal>Allow from</literal>, direktif Apache</primary>"

#, fuzzy
#| msgid "<primary>alias</primary><secondary>virtual alias domain</secondary>"
msgid "<primary>Apache</primary><secondary><literal></literal>Allow from</secondary>"
msgstr "<primary>alias</primary><secondary>domain alias virtual</secondary>"

msgid "<primary><literal>Deny from</literal>, Apache directive</primary>"
msgstr "<primary><literal>Deny from</literal>, direktif Apache</primary>"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>client</secondary>"
msgid "<primary>Apache</primary><secondary><literal>Deny from</literal></secondary>"
msgstr "<primary>NFS</primary><secondary>klien</secondary>"

msgid "<primary><literal>Order</literal>, Apache directive</primary>"
msgstr "<primary><literal>Order</literal>, direktif Apache</primary>"

#, fuzzy
#| msgid "<primary>file</primary><secondary>server</secondary>"
msgid "<primary>Apache</primary><secondary><literal>Order</literal></secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

msgid "The <literal>Order</literal> directive tells the server of the order in which the <literal>Allow from</literal> and <literal>Deny from</literal> directives are applied; the last one that matches takes precedence. In concrete terms, <literal>Order deny,allow</literal> allows access if no <literal>Deny from</literal> applies, or if an <literal>Allow from</literal> directive does. Conversely, <literal>Order allow,deny</literal> rejects access if no <literal>Allow from</literal> directive matches (or if a <literal>Deny from</literal> directive applies)."
msgstr "Direktif <literal>Order</literal> memberitahu server dari urutan atas direktif <literal>Allow from</literal> dan <literal>Deny from</literal> diterapkan; yang terakhir cocok didahulukan. Secara konkret, <literal>Order deny,allow</literal> memungkinkan akses jika tidak ada <literal>Deny from</literal> yang berlaku, atau jika sebuah direktif <literal>Allow from</literal> berlaku. Sebaliknya, <literal>Order allow,deny</literal> menolak akses jika tidak ada direktif <literal>Allow from</literal> yang cocok (atau jika direktif <literal>Deny from</literal> berlaku)."

msgid "The <literal>Allow from</literal> and <literal>Deny from</literal> directives can be followed by an IP address, a network (such as <literal>192.168.0.0/255.255.255.0</literal>, <literal>192.168.0.0/24</literal> or even <literal>192.168.0</literal>), a hostname or a domain name, or the <literal>all</literal> keyword, designating everyone."
msgstr "Direktif <literal>Allow from</literal> dan <literal>Deny from</literal> dapat diikuti oleh sebuah alamat IP, suatu jaringan (seperti <literal>192.168.0.0/255.255.255.0</literal>, <literal>192.168.0.0/24</literal>, atau bahkan <literal>192.168.0</literal> ), nama host atau nama domain, atau kata kunci <literal>all</literal>, yang berlaku untuk semua."

msgid "For instance, to reject connections by default but allow them from the local network, you could use this:"
msgstr "Misalnya, untuk menolak koneksi secara default, tetapi memungkinkan mereka dari jaringan lokal, Anda bisa menggunakan ini:"

msgid ""
"\n"
"Order deny,allow\n"
"Allow from 192.168.0.0/16\n"
"Deny from all"
msgstr ""
"\n"
"Order deny,allow\n"
"Allow from 192.168.0.0/16\n"
"Deny from all"

msgid "Log Analyzers"
msgstr "Penganalisis Log"

msgid "A log analyzer is frequently installed on a web server; since the former provides the administrators with a precise idea of the usage patterns of the latter."
msgstr "Penganalisis log sering dipasang pada sebuah server web; karena memberi administrator gambaran yang presisi atas pola penggunaan server."

msgid "The Falcot Corp administrators selected <emphasis>AWStats</emphasis> (<emphasis>Advanced Web Statistics</emphasis>) to analyze their Apache log files."
msgstr "Para administrator Falcot Corp memilih <emphasis>AWStats</emphasis> (<emphasis>Advanced Web Statistics</emphasis>), untuk menganalisis berkas log Apache mereka."

msgid "<primary><emphasis>AWStats</emphasis></primary>"
msgstr "<primary><emphasis>AWStats</emphasis></primary>"

msgid "<primary>web logs analyzer</primary>"
msgstr "<primary>penganalisis log web</primary>"

msgid "<primary>logs</primary><secondary>web logs analyzer</secondary>"
msgstr "<primary>log</primary><secondary>penganalisis log web</secondary>"

msgid "<primary>analyzer of web logs</primary>"
msgstr "<primary>penganalisis log web</primary>"

#, fuzzy
#| msgid "<primary>logs</primary><secondary>web logs analyzer</secondary>"
msgid "<primary>Apache</primary><secondary>log analyzer</secondary>"
msgstr "<primary>log</primary><secondary>penganalisis log web</secondary>"

msgid "The first configuration step is the customization of the <filename>/etc/awstats/awstats.conf</filename> file. The Falcot administrators keep it unchanged apart from the following parameters:"
msgstr "Langkah konfigurasi pertama adalah penyesuaian berkas <filename>/etc/awstats/awstats.conf</filename>. Para administrator Falcot mempertahankannya kecuali parameter berikut:"

msgid ""
"\n"
"LogFile=\"/var/log/apache2/access.log\"\n"
"LogFormat = \"%virtualname %host %other %logname %time1 %methodurl %code %bytesd %refererquot %uaquot\"\n"
"SiteDomain=\"www.falcot.com\"\n"
"HostAliases=\"falcot.com REGEX[^.*\\.falcot\\.com$]\"\n"
"DNSLookup=1\n"
"LoadPlugin=\"tooltips\""
msgstr ""
"\n"
"LogFile=\"/var/log/apache2/access.log\"\n"
"LogFormat = \"%virtualname %host %other %logname %time1 %methodurl %code %bytesd %refererquot %uaquot\"\n"
"SiteDomain=\"www.falcot.com\"\n"
"HostAliases=\"falcot.com REGEX[^.*\\.falcot\\.com$]\"\n"
"DNSLookup=1\n"
"LoadPlugin=\"tooltips\""

msgid "All these parameters are documented by comments in the template file. In particular, the <varname>LogFile</varname> and <varname>LogFormat</varname> parameters describe the location and format of the log file and the information it contains; <varname>SiteDomain</varname> and <varname>HostAliases</varname> list the various names under which the main web site is known."
msgstr "Semua parameter ini didokumentasikan oleh komentar dalam berkas templat. Secara khusus, parameter <varname>LogFile</varname> dan <varname>LogFormat</varname> menggambarkan lokasi dan format berkas log dan informasi di dalamnya; <varname>SiteDomain</varname> dan <varname>HostAliases</varname> berisi daftar berbagai nama yang dipakai oleh situs web utama."

msgid "For high traffic sites, <varname>DNSLookup</varname> should usually not be set to <literal>1</literal>; for smaller sites, such as the Falcot one described above, this setting allows getting more readable reports that include full machine names instead of raw IP addresses."
msgstr "Untuk situs lalu lintas tinggi, <varname>DNSLookup</varname> biasanya tidak diatur ke <literal>1</literal>; untuk situs kecil, seperti Falcot yang dijelaskan di atas, pengaturan ini memungkinkan mendapatkan laporan yang lebih mudah dibaca yang meliputi nama-nama lengkap mesin bukan alamat IP mentah."

msgid "<emphasis>SECURITY</emphasis> Access to statistics"
msgstr "<emphasis>KEAMANAN</emphasis> Akses ke statistik"

msgid "AWStats makes its statistics available on the website with no restrictions by default, but restrictions can be set up so that only a few (probably internal) IP addresses can access them; the list of allowed IP addresses needs to be defined in the <varname>AllowAccessFromWebToFollowingIPAddresses</varname> parameter"
msgstr "AWStats membuat statistik yang tersedia di situs web tanpa batasan secara default, tetapi pembatasan dapat diatur sehingga (mungkin) hanya beberapa alamat IP (internal) yang dapat mengaksesnya; daftar alamat IP yang diperbolehkan perlu didefinisikan dalam parameter <varname>AllowAccessFromWebToFollowingIPAddresses</varname>"

msgid "AWStats will also be enabled for other virtual hosts; each virtual host needs its own configuration file, such as <filename>/etc/awstats/awstats.www.falcot.org.conf</filename>."
msgstr "AWStats juga akan diaktifkan untuk host virtual lain; masing-masing host virtual perlu memiliki berkas konfigurasi tersendiri, seperti misalnya <filename>/etc/awstats/awstats.www.falcot.org.conf</filename>."

msgid "AWStats configuration file for a virtual host"
msgstr "Berkas konfigurasi AWStats untuk sebuah host virtual"

msgid ""
"\n"
"Include \"/etc/awstats/awstats.conf\"\n"
"SiteDomain=\"www.falcot.org\"\n"
"HostAliases=\"falcot.org\""
msgstr ""
"\n"
"Include \"/etc/awstats/awstats.conf\"\n"
"SiteDomain=\"www.falcot.org\"\n"
"HostAliases=\"falcot.org\""

msgid "AWStats uses many icons stored in the <filename>/usr/share/awstats/icon/</filename> directory. In order for these icons to be available on the web site, the Apache configuration needs to be adapted to include the following directive:"
msgstr "AWStats menggunakan banyak ikon yang disimpan dalam direktori <filename>/usr/share/awstats/ikon/</filename>. Agar ikon ini akan tersedia di situs web, konfigurasi Apache perlu disesuaikan untuk menyertakan direktif berikut:"

msgid ""
"\n"
"Alias /awstats-icon/ /usr/share/awstats/icon/"
msgstr ""
"\n"
"Alias /awstats-icon/ /usr/share/awstats/icon/"

msgid "After a few minutes (and once the script has been run a few times), the results are available online: <ulink type=\"block\" url=\"http://www.falcot.com/cgi-bin/awstats.pl\" /><ulink type=\"block\" url=\"http://www.falcot.org/cgi-bin/awstats.pl\" />"
msgstr "Setelah beberapa menit (dan setelah skrip dijalankan beberapa kali), hasil tersedia daring: <ulink type=\"block\" url=\"http://www.falcot.com/cgi-bin/awstats.pl\" /> <ulink type=\"block\" url=\"http://www.falcot.org/cgi-bin/awstats.pl\" />"

msgid "<emphasis>CAUTION</emphasis> Log file rotation"
msgstr "<emphasis>HATI-HATI</emphasis> Rotasi berkas log"

msgid "In order for the statistics to take all the logs into account, <emphasis>AWStats</emphasis> needs to be run right before the Apache log files are rotated. Looking at the <literal>prerotate</literal> directive of <filename>/etc/logrotate.d/apache2</filename> file, this can be solved by putting a symlink to <filename>/usr/share/awstats/tools/update.sh</filename> in <filename>/etc/logrotate.d/httpd-prerotate</filename>:"
msgstr "Agar statistik memperhitungkan semua log, <emphasis>AWStats</emphasis> perlu dijalankan tepat sebelum berkas log Apache tersebut diputar. Melihat direktif <literal>prerotate</literal> dari berkas <filename>/etc/logrotate.d/apache2</filename>, ini dapat diselesaikan dengan meletakkan symlink ke <filename>/usr/share/awstats/tools/update.sh</filename> di <filename>/etc/logrotate.d/ httpd-prerotate</filename>:"

#, fuzzy
#| msgid ""
#| "<computeroutput>$ </computeroutput><userinput>cat /etc/logrotate.d/apache2\n"
#| "</userinput><computeroutput>/var/log/apache2/*.log {\n"
#| "  daily\n"
#| "  missingok\n"
#| "  rotate 14\n"
#| "  compress\n"
#| "  delaycompress\n"
#| "  notifempty\n"
#| "  create 644 root adm\n"
#| "  sharedscripts\n"
#| "  postrotate\n"
#| "    if /etc/init.d/apache2 status &gt; /dev/null ; then \\\n"
#| "      /etc/init.d/apache2 reload &gt; /dev/null; \\\n"
#| "    fi;\n"
#| "  endscript\n"
#| "  prerotate\n"
#| "    if [ -d /etc/logrotate.d/httpd-prerotate ]; then \\\n"
#| "      run-parts /etc/logrotate.d/httpd-prerotate; \\\n"
#| "    fi; \\\n"
#| "  endscript\n"
#| "}\n"
#| "$ </computeroutput><userinput>sudo mkdir -p /etc/logrotate.d/httpd-prerotate\n"
#| "</userinput><computeroutput>$ </computeroutput><userinput>sudo ln -sf /usr/share/awstats/tools/update.sh \\\n"
#| "  /etc/logrotate.d/httpd-prerotate/awstats\n"
#| "</userinput>"
msgid ""
"<computeroutput>$ </computeroutput><userinput>cat /etc/logrotate.d/apache2\n"
"</userinput><computeroutput><![CDATA[/var/log/apache2/*.log {\n"
"  daily\n"
"  missingok\n"
"  rotate 14\n"
"  compress\n"
"  delaycompress\n"
"  notifempty\n"
"  create 644 root adm\n"
"  sharedscripts\n"
"  postrotate\n"
"    if invoke-rc.d apache2 status > /dev/null 2>&1; then \\\n"
"      invoke-rc.d apache2 reload > /dev/null 2>&1; \\\n"
"    fi;\n"
"  endscript\n"
"  prerotate\n"
"    if [ -d /etc/logrotate.d/httpd-prerotate ]; then \\\n"
"      run-parts /etc/logrotate.d/httpd-prerotate; \\\n"
"    fi; \\\n"
"  endscript\n"
"}\n"
"]]>\n"
"$ </computeroutput><userinput>sudo mkdir -p /etc/logrotate.d/httpd-prerotate\n"
"</userinput><computeroutput>$ </computeroutput><userinput>sudo ln -sf /usr/share/awstats/tools/update.sh \\\n"
"  /etc/logrotate.d/httpd-prerotate/awstats\n"
"</userinput>"
msgstr ""
"<computeroutput>$ </computeroutput><userinput>cat /etc/logrotate.d/apache2\n"
"</userinput><computeroutput>/var/log/apache2/*.log {\n"
"  daily\n"
"  missingok\n"
"  rotate 14\n"
"  compress\n"
"  delaycompress\n"
"  notifempty\n"
"  create 644 root adm\n"
"  sharedscripts\n"
"  postrotate\n"
"    if /etc/init.d/apache2 status &gt; /dev/null ; then \\\n"
"      /etc/init.d/apache2 reload &gt; /dev/null; \\\n"
"    fi;\n"
"  endscript\n"
"  prerotate\n"
"    if [ -d /etc/logrotate.d/httpd-prerotate ]; then \\\n"
"      run-parts /etc/logrotate.d/httpd-prerotate; \\\n"
"    fi; \\\n"
"  endscript\n"
"}\n"
"$ </computeroutput><userinput>sudo mkdir -p /etc/logrotate.d/httpd-prerotate\n"
"</userinput><computeroutput>$ </computeroutput><userinput>sudo ln -sf /usr/share/awstats/tools/update.sh \\\n"
"  /etc/logrotate.d/httpd-prerotate/awstats\n"
"</userinput>"

msgid "Note also that the log files created by <command>logrotate</command> need to be readable by everyone, especially AWStats. In the above example, this is ensured by the <literal>create 644 root adm</literal> line (instead of the default <literal>640</literal> permissions)."
msgstr "Perhatikan juga bahwa berkas log yang dibuat oleh <command>logrotate</command> harus dibaca oleh semua orang, terutama AWStats. Dalam contoh di atas, ini dijamin oleh baris <literal>create 644 root adm</literal> (bukan izin default <literal>640</literal>)."

msgid "FTP File Server"
msgstr "Server Berkas FTP"

#, fuzzy
#| msgid "<primary>FTP (<emphasis>File Transfer Protocol</emphasis>)</primary>"
msgid "<primary>FTP</primary><see>File Transfer Protocol</see>"
msgstr "<primary>FTP (<emphasis>File Transfer Protocol</emphasis>)</primary>"

#, fuzzy
#| msgid "<primary>Simple Mail Transfer Protocol</primary>"
msgid "<primary>File Transfer Protocol</primary>"
msgstr "<primary>Simple Mail Transfer Protocol</primary>"

msgid "<primary>server</primary><secondary>file</secondary>"
msgstr "<primary>server</primary><secondary>berkas</secondary>"

#, fuzzy
#| msgid "<primary>server</primary><secondary>SMTP</secondary>"
msgid "<primary>server</primary><secondary>FTP</secondary>"
msgstr "<primary>peladen</primary><secondary>SMTP</secondary>"

msgid "FTP (<emphasis>File Transfer Protocol</emphasis>) is one of the first protocols of the Internet (RFC 959 was issued in 1985!). It was used to distribute files before the Web was even born (the HTTP protocol was created in 1990, and formally defined in its 1.0 version by RFC 1945, issued in 1996)."
msgstr "FTP (<emphasis>File Transfer Protocol</emphasis>) adalah salah satu protokol pertama Internet (RFC 959 dikeluarkan pada tahun 1985!). Itu digunakan untuk mendistribusikan berkas bahkan sebelum Web lahir (protokol HTTP diciptakan pada tahun 1990, dan secara resmi ditetapkan untuk versi 1.0 oleh RFC 1945, diterbitkan pada tahun 1996)."

msgid "This protocol allows both file uploads and file downloads; for this reason, it is still widely used to deploy updates to a website hosted by one's Internet service provider (or any other entity hosting websites). In these cases, secure access is enforced with a user identifier and password; on successful authentication, the FTP server grants read-write access to that user's home directory."
msgstr "Protokol ini memungkinkan pengunggahan berkas dan pengunduhan berkas; untuk alasan ini, masih banyak digunakan untuk menyebarkan pembaruan ke sebuah situs web yang diselenggarakan oleh salah satu penyedia layanan Internet (atau entitas lain yang mewadahi situs web). Dalam kasus ini, akses aman dipaksakan dengan pengidentifikasi pengguna dan kata sandi; saat otentikasi sukses, server FTP memberikan akses baca-tulis ke direktori home pengguna."

msgid "Other FTP servers are mainly used to distribute files for public downloading; Debian packages are a good example. The contents of these servers is fetched from other, geographically remote, servers; it is then made available to less distant users. This means that client authentication is not required; as a consequence, this operating mode is known as “anonymous FTP”. To be perfectly correct, the clients do authenticate with the <literal>anonymous</literal> username; the password is often, by convention, the user's email address, but the server ignores it."
msgstr "Server FTP lain terutama digunakan untuk mendistribusikan berkas untuk diunduh publik; paket-paket Debian adalah contoh yang baik. Isi dari server tersebut diambil dari server lain, remote secara geografis, ini kemudian menjadi tersedia untuk pengguna yang lebih dekat. Ini berarti bahwa otentikasi klien tidak diperlukan; sebagai akibatnya, modus operasi ini dikenal sebagai \"anonymous FTP\". Agar sepenuhnya sempurna, klien mengotentikasi dengan nama pengguna <literal>anonim</literal>; kata sandi sering kali, oleh konvensi, adalah alamat surel pengguna, tetapi server mengabaikannya."

#, fuzzy
#| msgid "Many FTP servers are available in Debian (<emphasis role=\"pkg\">ftpd</emphasis>, <emphasis role=\"pkg\">proftpd-basic</emphasis>, <emphasis role=\"pkg\">pyftpd</emphasis> and so on). The Falcot Corp administrators picked <emphasis role=\"pkg\">vsftpd</emphasis> because they only use the FTP server to distribute a few files (including a Debian package repository); since they don't need advanced features, they chose to focus on the security aspects."
msgid "Many FTP servers are available in Debian (<emphasis role=\"pkg\">ftpd</emphasis><footnote><para>The <emphasis role=\"pkg\">ftpd</emphasis> package is not included in Debian <emphasis role=\"distribution\">Buster</emphasis> due to a bug, which could not be solved before the release.</para></footnote>, <emphasis role=\"pkg\">proftpd-basic</emphasis>, <emphasis role=\"pkg\">pyftpd</emphasis> and so on). The Falcot Corp administrators picked <emphasis role=\"pkg\">vsftpd</emphasis> because they only use the FTP server to distribute a few files (including a Debian package repository); since they don't need advanced features, they chose to focus on the security aspects."
msgstr "Banyak server FTP tersedia di Debian (<emphasis role=\"pkg\">ftpd</emphasis>, <emphasis role=\"pkg\">proftpd-basic</emphasis>, <emphasis role=\"pkg\">pyftpd</emphasis> dan sebagainya). Administrator Falcot Corp memilih <emphasis role=\"pkg\">vsftpd</emphasis> karena mereka hanya menggunakan server FTP untuk mendistribusikan beberapa berkas (termasuk sebuah repositori paket Debian); karena mereka tidak memerlukan fitur-fitur canggih, mereka memilih untuk fokus pada aspek keamanan."

msgid "<primary><emphasis role=\"pkg\">vsftpd</emphasis></primary>"
msgstr "<primary><emphasis role=\"pkg\">vsftpd</emphasis></primary>"

msgid "Installing the package creates an <literal>ftp</literal> system user. This account is always used for anonymous FTP connections, and its home directory (<filename>/srv/ftp/</filename>) is the root of the tree made available to users connecting to this service. The default configuration (in <filename>/etc/vsftpd.conf</filename>) requires some changes to cater to the simple need of making big files available for public downloads: anonymous access needs to be enabled (<literal>anonymous_enable=YES</literal>) and read-only access of local users needs to be disabled (<literal>local_enable=NO</literal>). The latter is particularly important since the FTP protocol doesn't use any form of encryption and the user password could be intercepted over the wire."
msgstr "Memasang paket menciptakan pengguna sistem <literal>ftp</literal>. Akun ini selalu digunakan untuk koneksi FTP anonim, dan direktori home-nya (<filename>/srv/ftp/</filename>) adalah akar dari pohon yang dibuat tersedia untuk pengguna yang tersambung ke layanan ini. Konfigurasi default (dalam <filename>/etc/vsftpd.conf</filename>) memerlukan beberapa perubahan untuk memenuhi kebutuhan sederhana yang membuat berkas-berkas besar tersedia untuk diunduh oleh publik: akses anonim perlu diaktifkan (<literal>anonymous_enable=YES</literal>) dan akses hanya-baca dari pengguna lokal perlu dinonaktifkan (<literal>local_enable=NO</literal>). Yang kedua sangat penting karena protokol FTP tidak menggunakan bentuk enkripsi apapun dan kata sandi pengguna bisa disadap saat lewat kabel."

msgid "NFS File Server"
msgstr "Server Berkas NFS"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>security</secondary>"
msgid "<primary>NFS</primary><seealso>Network File System</seealso>"
msgstr "<primary>NFS</primary><secondary>keamanan</secondary>"

#, fuzzy
#| msgid "<primary>NFS</primary>"
msgid "<primary>Network File System</primary>"
msgstr "<primary>NFS</primary>"

#, fuzzy
#| msgid "<primary>server</primary><secondary>SMTP</secondary>"
msgid "<primary>server</primary><secondary>NFS</secondary>"
msgstr "<primary>peladen</primary><secondary>SMTP</secondary>"

#, fuzzy
#| msgid "NFS (<emphasis>Network File System</emphasis>) is a protocol allowing remote access to a filesystem through the network. All Unix systems can work with this protocol; when Windows systems are involved, Samba must be used instead."
msgid "NFS (<emphasis>Network File System</emphasis>) is a protocol allowing remote access to a filesystem through the network. All Unix systems can work with this protocol."
msgstr "NFS (<emphasis>Network File System</emphasis>) merupakan sebuah protokol yang memungkinkan akses remote ke sistem berkas melalui jaringan. Semua sistem Unix dapat bekerja dengan protokol ini; ketika sistem Windows yang terlibat, Samba harus digunakan sebagai gantinya."

#, fuzzy
#| msgid "<emphasis>TIP</emphasis> White list and RBLs"
msgid "<emphasis>SPECIFIC CASE</emphasis> Microsoft Windows and NFS Shares"
msgstr "<emphasis>TIPS</emphasis> Daftar putih dan RBL"

msgid "When older or (so called) \"Home\" variants of Windows are involved, usually Samba (<xref linkend=\"sect.windows-file-server-with-samba\" />) must be used instead of NFS. Modern Windows Server and \"Pro\" or \"Enterprise\" Desktop solutions however have built-in support for NFS. After installation of the \"Services for NFS\" components NFS shares can be accessed and temporarily or permanently mounted like any other network share. Be aware of possible encoding issues in file names."
msgstr ""

msgid "As an alternative Debian can be installed on Windows 10 Pro and higher. It requires the installation of the Windows Subsystem for Linux component and the Debian app from the Windows store. <ulink type=\"block\" url=\"https://www.microsoft.com/en-us/p/debian/9msvkqc78pk6?\" />"
msgstr ""

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>client</secondary>"
msgid "<primary>Network File System</primary><secondary>Windows client</secondary>"
msgstr "<primary>NFS</primary><secondary>klien</secondary>"

msgid "<primary><emphasis>Network</emphasis></primary><secondary><emphasis>File System</emphasis></secondary>"
msgstr "<primary><emphasis>Network</emphasis></primary><secondary><emphasis>File System</emphasis></secondary>"

msgid "<primary>filesystem</primary><secondary>network</secondary>"
msgstr "<primary>sistem berkas</primary><secondary>jaringan</secondary>"

msgid "<primary>file</primary><secondary>server</secondary>"
msgstr "<primary>berkas</primary><secondary>server</secondary>"

msgid "NFS is a very useful tool but, historically, it has suffered from many limitations, most of which have been addressed with version 4 of the protocol. The downside is that the latest version of NFS is harder to configure when you want to make use of basic security features such as authentication and encryption since it relies on Kerberos for those parts. And without those, the NFS protocol must be restricted to a trusted local network since data goes over the network unencrypted (a <emphasis>sniffer</emphasis> can intercept it) and access rights are granted based on the client's IP address (which can be spoofed)."
msgstr "NFS adalah alat yang sangat berguna, tetapi secara historis menderita karena banyak keterbatasan, yang sebagian besar telah diperbaiki pada protokol versi 4. Kekurangannya adalah bahwa versi terbaru dari NFS lebih sulit untuk dikonfigurasi bila Anda ingin menggunakan fitur keamanan dasar seperti otentikasi dan enkripsi karena hal itu bergantung pada Kerberos. Dan tanpa mereka, protokol NFS harus dibatasi pada jaringan lokal yang terpercaya karena data pergi melalui jaringan tidak terenkripsi (<emphasis>sniffer</emphasis> bisa mencegat itu) dan hak akses diberikan didasarkan pada alamat IP klien (yang dapat dipalsukan)."

msgid "<emphasis>DOCUMENTATION</emphasis> NFS HOWTO"
msgstr "<emphasis>DOKUMENTASI</emphasis> NFS HOWTO"

#, fuzzy
#| msgid "Good documentation to deploy NFSv4 is rather scarce. Here are some pointers with content of varying quality but that should at least give some hints on what should be done. <ulink type=\"block\" url=\"https://help.ubuntu.com/community/NFSv4Howto\" /> <ulink type=\"block\" url=\"http://wiki.linux-nfs.org/wiki/index.php/Nfsv4_configuration\" />"
msgid "Good documentation to deploy NFSv4 is rather scarce. Here are some pointers with content of varying quality but that should at least give some hints on what should be done. <ulink type=\"block\" url=\"https://help.ubuntu.com/community/NFSv4Howto\" /> <ulink type=\"block\" url=\"https://wiki.linux-nfs.org/wiki/index.php/Nfsv4_configuration\" />"
msgstr "Dokumentasi yang baik untuk menggelar NFSv4 jarang ditemui. Berikut adalah beberapa petunjuk dengan konten dari berbagai kualitas yang setidaknya memberikan beberapa petunjuk tentang apa yang harus dilakukan. <ulink type=\"block\" url=\"https://help.ubuntu.com/community/NFSv4Howto\" /> <ulink type=\"block\" url=\"http://wiki.linux-nfs.org/wiki/index.php/Nfsv4_configuration\" />"

msgid "Securing NFS"
msgstr "Mengamankan NFS"

msgid "<primary>NFS</primary><secondary>security</secondary>"
msgstr "<primary>NFS</primary><secondary>keamanan</secondary>"

msgid "If you don't use the Kerberos-based security features, it is vital to ensure that only the machines allowed to use NFS can connect to the various required RPC servers, because the basic protocol trusts the data received from the network. The firewall must also block <emphasis>IP spoofing</emphasis> so as to prevent an outside machine from acting as an inside one, and access to the appropriate ports must be restricted to the machines meant to access the NFS shares."
msgstr "Jika Anda tidak menggunakan fitur keamanan berbasis Kerberos, sangat penting untuk memastikan bahwa hanya mesin-mesin yang diizinkan untuk menggunakan NFS dapat terhubung ke berbagai server RPC yang diperlukan, karena protokol dasar mempercayai data yang diterima dari jaringan. Firewall juga harus memblokir <emphasis>IP spoofing</emphasis> untuk mencegah mesin di luar dari bertindak sebagai seolah di dalam, dan akses ke port yang sesuai harus dibatasi hanya untuk mesin-mesin yang memang akan mengakses share NFS."

msgid "<emphasis>BACK TO BASICS</emphasis> RPC"
msgstr "<emphasis>KEMBALI KE DASAR</emphasis> RPC"

#, fuzzy
#| msgid "<primary><emphasis>Remote Procedure Call</emphasis></primary>"
msgid "<primary>RPC</primary><see>Remote Procedure Call</see>"
msgstr "<primary><emphasis>Remote Procedure Call</emphasis></primary>"

#, fuzzy
#| msgid "<primary><emphasis>Remote Procedure Call</emphasis></primary>"
msgid "<primary>Remote Procedure Call</primary>"
msgstr "<primary><emphasis>Remote Procedure Call</emphasis></primary>"

msgid "RPC (<emphasis>Remote Procedure Call</emphasis>) is a Unix standard for remote services. NFS is one such service."
msgstr "RPC (<emphasis>Remote Procedure Call</emphasis>) adalah standar Unix untuk layanan remote. NFS adalah salah satu layanan tersebut."

msgid "RPC services register to a directory known as the <emphasis>portmapper</emphasis>. A client wishing to perform an NFS query first addresses the <emphasis>portmapper</emphasis> (on port 111, either TCP or UDP), and asks for the NFS server; the reply usually mentions port 2049 (the default for NFS). Not all RPC services necessarily use a fixed port."
msgstr "Layanan RPC mendaftar ke direktori yang dikenal sebagai <emphasis>portmapper</emphasis>. Suatu klien yang ingin melakukan query NFS pertama menghubungi <emphasis>portmapper</emphasis> (pada port 111, TCP atau UDP), dan meminta server NFS; jawabannya biasanya menyebutkan port 2049 (default untuk NFS). Tidak semua layanan RPC harus menggunakan port tetap."

msgid "<primary><command>portmapper</command></primary>"
msgstr "<primary><command>portmapper</command></primary>"

msgid "Older versions of the protocol required other RPC services which used dynamically assigned ports. Fortunately, with NFS version 4, only port 2049 (for NFS) and 111 (for the portmapper) are needed and they are thus easy to firewall."
msgstr "Versi protokol lebih tua memerlukan layanan RPC lainnya yang menggunakan port dinamis. Untungnya, dengan NFS versi 4 hanya port 2049 (untuk NFS) dan 111 (untuk portmapper) yang diperlukan dan sehingga mereka mudah untuk firewall."

msgid "NFS Server"
msgstr "Server NFS"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>client</secondary>"
msgid "<primary>NFS</primary><secondary><filename>/etc/exports</filename></secondary>"
msgstr "<primary>NFS</primary><secondary>klien</secondary>"

#, fuzzy
#| msgid "<primary>SIP</primary><secondary>server</secondary>"
msgid "<primary>NFS</primary><secondary>server</secondary>"
msgstr "<primary>SIP</primary><secondary>server</secondary>"

msgid "The NFS server is part of the Linux kernel; in kernels provided by Debian it is built as a kernel module. If the NFS server is to be run automatically on boot, the <emphasis role=\"pkg\">nfs-kernel-server</emphasis> package should be installed; it contains the relevant start-up scripts."
msgstr "Server NFS adalah bagian dari kernel Linux; di kernel yang disediakan oleh Debian itu dibangun sebagai modul kernel. Jika server NFS akan dijalankan secara otomatis pada saat boot, paket <emphasis role=\"pkg\">nfs-kernel-server</emphasis> harus diinstal; ini berisi skrip startup yang relevan."

msgid "The NFS server configuration file, <filename>/etc/exports</filename>, lists the directories that are made available over the network (<emphasis>exported</emphasis>). For each NFS share, only the given list of machines is granted access. More fine-grained access control can be obtained with a few options. The syntax for this file is quite simple:"
msgstr "Berkas konfigurasi server NFS, <filename>/etc/exsports</filename>, menampung daftar direktori yang dibuat tersedia melalui jaringan (<emphasis>diekspor</emphasis>). Untuk setiap share NFS, hanya mesin yang terdaftar yang diberi akses. Lebih banyak kontrol akses halus dapat diperoleh dengan beberapa pilihan. Sintaks berkas ini cukup sederhana:"

msgid "<primary><filename>exports</filename></primary>"
msgstr "<primary><filename>exports</filename></primary>"

msgid "<primary><filename>/etc/exports</filename></primary>"
msgstr "<primary><filename>/etc/exports</filename></primary>"

msgid ""
"\n"
"/directory/to/share machine1(option1,option2,...) machine2(...) ..."
msgstr ""
"\n"
"/direktori/yang/akan/di-share mesin1(opsi1,opsi2,...) mesin2(...) ..."

msgid "Note that with NFSv4, all exported directories must be part of a single hierarchy and that the root directory of that hierarchy must be exported and identified with the option <literal>fsid=0</literal> or <literal>fsid=root</literal>."
msgstr "Catatan bahwa dengan NFSv4, semua direktori yang diekspor harus menjadi bagian dari hirarki tunggal dan bahwa direktori root dari hirarki itu harus diekspor dan diidentifikasi dengan pilihan <literal>fsid=0</literal> atau <literal>fsid=root</literal>."

msgid "Each machine can be identified either by its DNS name or its IP address. Whole sets of machines can also be specified using either a syntax such as <literal>*.falcot.com</literal> or an IP address range such as <literal>192.168.0.0/255.255.255.0</literal> or <literal>192.168.0.0/24</literal>."
msgstr "Setiap mesin dapat diidentifikasi dengan nama DNS atau alamat IP-nya. Seluruh set mesin juga dapat ditentukan dengan menggunakan sintaks seperti <literal>*. falcot.com</literal> atau kisaran alamat IP seperti <literal>192.168.0.0/255.255.255.0</literal> atau <literal>192.168.0.0/24</literal>."

msgid "Directories are made available as read-only by default (or with the <literal>ro</literal> option). The <literal>rw</literal> option allows read-write access. NFS clients typically connect from a port restricted to root (in other words, below 1024); this restriction can be lifted by the <literal>insecure</literal> option (the <literal>secure</literal> option is implicit, but it can be made explicit if needed for clarity)."
msgstr "Direktori disediakan sebagai baca-saja secara default (atau dengan opsi <literal>ro</literal>). Opsi <literal>rw</literal> memungkinkan akses baca-tulis. Klien NFS biasanya terhubung dari port yang terbatas hanya untuk root (dengan kata lain, di bawah 1024); pembatasan ini dapat dicabut dengan pilihan <literal>insecure</literal> (opsi <literal>secure</literal> adalah implisit, tetapi dapat dibuat eksplisit jika diperlukan untuk kejelasan)."

msgid "<primary>NFS</primary><secondary>options</secondary>"
msgstr "<primary>NFS</primary><secondary>opsi</secondary>"

msgid "By default, the server only answers an NFS query when the current disk operation is complete (<literal>sync</literal> option); this can be disabled with the <literal>async</literal> option. Asynchronous writes increase performance a bit, but they decrease reliability since there is a data loss risk in case of the server crashing between the acknowledgment of the write and the actual write on disk. Since the default value changed recently (as compared to the historical value of NFS), an explicit setting is recommended."
msgstr "Secara default, server hanya menjawab query NFS ketika operasi disk saat ini telah selesai (opsi <literal>sync</literal>); ini dapat dinonaktifkan dengan opsi <literal>async</literal>. Menulis asinkron meningkatkan kinerja sedikit, tetapi mereka mengurangi keandalan karena ada risiko kehilangan data ketika server crash antara konfirmasi atas penulisan dan menulis sebenarnya pada disk. Karena nilai default berubah baru-baru ini (dibandingkan dengan nilai historis NFS), setelan eksplisit dianjurkan."

#, fuzzy
#| msgid "In order to not give root access to the filesystem to any NFS client, all queries appearing to come from a root user are considered by the server as coming from the <literal>nobody</literal> user. This behavior corresponds to the <literal>root_squash</literal> option, and is enabled by default. The <literal>no_root_squash</literal> option, which disables this behavior, is risky and should only be used in controlled environments. The <literal>anonuid=<replaceable>uid</replaceable></literal> and <literal>anongid=<replaceable>gid</replaceable></literal> options allow specifying another fake user to be used instead of UID/GID 65534 (which corresponds to user <literal>nobody</literal> and group <literal>nogroup</literal>)."
msgid "In order to not give root access to the filesystem to any NFS client, all queries appearing to come from a root user are considered by the server as coming from the <literal>nobody</literal> user. This behavior corresponds to the <literal>root_squash</literal> option, and is enabled by default. The <literal>no_root_squash</literal> option, which disables this behavior, is risky and should only be used in controlled environments. If all users should be mapped to the user <literal>nobody</literal>, use <literal>all_squash</literal>. The <literal>anonuid=<replaceable>uid</replaceable></literal> and <literal>anongid=<replaceable>gid</replaceable></literal> options allow specifying another fake user to be used instead of UID/GID 65534 (which corresponds to user <literal>nobody</literal> and group <literal>nogroup</literal>)."
msgstr "Untuk tidak memberikan akses root ke sistem berkas bagi klien NFS, semua pertanyaan yang muncul datang dari pengguna root dianggap oleh server sebagai datang dari pengguna <literal>nobody</literal>. Perilaku ini sesuai dengan opsi <literal>root_squash</literal>, dan diaktifkan secara default. Opsi <literal>no_root_squash</literal>, yang menonaktifkan perilaku ini, berisiko dan hanya boleh digunakan dalam lingkungan yang terkendali. Opsi <literal>anonuid=<replaceable>uid</replaceable></literal> dan <literal>anongid=<replaceable>gid</replaceable></literal> memungkinkan menentukan pengguna palsu lain untuk digunakan sebagai pengganti UID/GID 65534 (milik pengguna <literal>nobody</literal> dan grup <literal>nogroup</literal>)."

msgid "With NFSv4, you can add a <literal>sec</literal> option to indicate the security level that you want: <literal>sec=sys</literal> is the default with no special security features, <literal>sec=krb5</literal> enables authentication only, <literal>sec=krb5i</literal> adds integrity protection, and <literal>sec=krb5p</literal> is the most complete level which includes privacy protection (with data encryption). For this to work you need a working Kerberos setup (that service is not covered by this book)."
msgstr "Dengan NFSv4, Anda dapat menambahkan opsi <literal>sec</literal> untuk menunjukkan tingkat keamanan yang Anda inginkan: <literal>sec=sys</literal> adalah default tanpa fitur keamanan khusus, <literal>sec=krb5</literal> hanya memfungsikan otentikasi, <literal>sec=krb5i </literal> menambahkan perlindungan integritas, dan <literal>sec=krb5p</literal> tingkat yang paling lengkap yang mencakup perlindungan privasi (dengan data enkripsi). Agar ini bekerja Anda memerlukan berjalannya Kerberos yang telah disiapkan (layanan itu tidak dibahas dalam buku ini)."

msgid "Other options are available; they are documented in the <citerefentry><refentrytitle>exports</refentrytitle> <manvolnum>5</manvolnum></citerefentry> manual page."
msgstr "Opsi-opsi lain tersedia; mereka didokumentasikan dalam halaman manual <citerefentry><refentrytitle>exports</refentrytitle> <manvolnum>5</manvolnum></citerefentry>."

msgid "<emphasis>CAUTION</emphasis> First installation"
msgstr "<emphasis>HATI-HATI</emphasis> Instalasi pertama"

#, fuzzy
#| msgid "The <filename>/etc/init.d/nfs-kernel-server</filename> boot script only starts the server if the <filename>/etc/exports</filename> lists one or more valid NFS shares. On initial configuration, once this file has been edited to contain valid entries, the NFS server must therefore be started with the following command:"
msgid "The <filename>/etc/init.d/nfs-kernel-server</filename> boot script only starts the server if <filename>/etc/exports</filename> lists one or more valid NFS shares. On initial configuration, once this file has been edited to contain valid entries, the NFS server must therefore be started with the following command:"
msgstr "Skrip boot <filename>/etc/init.d/nfs-kernel-server</filename> hanya memulai server jika <filename>/etc/exports</filename> mencantumkan satu atau lebih share NFS yang valid. Pada konfigurasi awal, setelah berkas ini telah disunting agar berisi entri yang valid, make server NFS karena itu harus dimulai dengan perintah berikut:"

#, fuzzy
#| msgid ""
#| "\n"
#| "<computeroutput># </computeroutput><userinput>service nfs-kernel-server start</userinput>"
msgid ""
"\n"
"<computeroutput># </computeroutput><userinput>systemctl start nfs-kernel-server</userinput>"
msgstr ""
"\n"
"<computeroutput># </computeroutput><userinput>service nfs-kernel-server start</userinput>"

msgid "NFS Client"
msgstr "Klien NFS"

msgid "<primary>client</primary><secondary>NFS</secondary>"
msgstr "<primary>klien</primary><secondary>NFS</secondary>"

msgid "<primary>NFS</primary><secondary>client</secondary>"
msgstr "<primary>NFS</primary><secondary>klien</secondary>"

#, fuzzy
#| msgid "As with other filesystems, integrating an NFS share into the system hierarchy requires mounting. Since this filesystem has its peculiarities, a few adjustments were required in the syntaxes of the <command>mount</command> command and the <filename>/etc/fstab</filename> file."
msgid "As with other filesystems, integrating an NFS share into the system hierarchy requires mounting (and the <emphasis role=\"pkg\">nfs-common</emphasis> package). Since this filesystem has its peculiarities, a few adjustments were required in the syntaxes of the <command>mount</command> command and the <filename>/etc/fstab</filename> file."
msgstr "Seperti dengan sistem berkas lain, mengintegrasikan share NFS ke dalam hirarki sistem memerlukan pengaitan. Karena sistem berkas ini memiliki kekhasan, beberapa penyesuaian diperlukan dalam sintaks perintah <command>mount</command> dan berkas <filename>/etc/fstab</filename>."

msgid "Manually mounting with the <command>mount</command> command"
msgstr "Secara manual mengait dengan perintah <command>mount</command>"

#, fuzzy
#| msgid ""
#| "\n"
#| "          <computeroutput># </computeroutput><userinput>mount -t nfs4 -o rw,nosuid arrakis.internal.falcot.com:/shared /srv/shared</userinput>"
msgid ""
"\n"
"<computeroutput># </computeroutput><userinput>mount -t nfs4 -o rw,nosuid arrakis.internal.falcot.com:/shared /srv/shared</userinput>\n"
"        "
msgstr ""
"\n"
"          <computeroutput># </computeroutput><userinput>mount -t nfs4 -o rw,nosuid arrakis.internal.falcot.com:/shared /srv/shared</userinput>"

msgid "NFS entry in the <filename>/etc/fstab</filename> file"
msgstr "Entri NFS di berkas <filename>/etc/fstab</filename>"

msgid ""
"\n"
"arrakis.internal.falcot.com:/shared /srv/shared nfs4 rw,nosuid 0 0"
msgstr ""
"\n"
"arrakis.internal.falcot.com:/shared /srv/shared nfs4 rw,nosuid 0 0"

#, fuzzy
#| msgid "The entry described above mounts, at system startup, the <filename>/shared/</filename> NFS directory from the <literal>arrakis</literal> server into the local <filename>/srv/shared/</filename> directory. Read-write access is requested (hence the <literal>rw</literal> parameter). The <literal>nosuid</literal> option is a protection measure that wipes any <literal>setuid</literal> or <literal>setgid</literal> bit from programs stored on the share. If the NFS share is only meant to store documents, another recommended option is <literal>noexec</literal>, which prevents executing programs stored on the share. Note that on the server, the <filename>shared</filename> directory is below the NFSv4 root export (for example <filename>/export/shared</filename>), it is not a top-level directory."
msgid "The entry described above mounts, at system startup, the NFS directory <filename>/shared/</filename> from the <literal>arrakis</literal> server into the local <filename>/srv/shared/</filename> directory. Read-write access is requested (hence the <literal>rw</literal> parameter). The <literal>nosuid</literal> option is a protection measure that wipes any <literal>setuid</literal> or <literal>setgid</literal> bit from programs stored on the share. If the NFS share is only meant to store documents, another recommended option is <literal>noexec</literal>, which prevents executing programs stored on the share. Note that on the server, the <filename>shared</filename> directory is below the NFSv4 root export (for example <filename>/export/shared</filename>), it is not a top-level directory."
msgstr "Entri menjelaskan pengaitan di atas, saat sistem startup, direktori NFS <filename>/shared/</filename> dari server <literal>arrakis</literal> ke dalam direktori <filename>/srv/shared/</filename> lokal. Akses baca-tulis diminta (maka parameter <literal>rw</literal>). Opsi <literal>nosuid</literal> adalah upaya perlindungan yang menghapus setiap bit <literal>setuid</literal> atau <literal>setgid</literal> dari program-program yang disimpan di share. Jika share NFS hanya dimaksudkan untuk menyimpan dokumen, opsi lain yang dianjurkan adalah <literal>noexec</literal>, yang mencegah mengeksekusi program-program yang disimpan di share. Perhatikan bahwa pada server, direktori <filename>shared</filename> ada di bawah NFSv4 ekspor root (misalnya <filename>/export/shared</filename>), itu bukan direktori aras puncak."

msgid "The <citerefentry><refentrytitle>nfs</refentrytitle> <manvolnum>5</manvolnum></citerefentry> manual page describes all the options in some detail."
msgstr "Halaman manual <citerefentry><refentrytitle>nfs</refentrytitle> <manvolnum>5</manvolnum></citerefentry> menjelaskan semua opsi secara agak mendetail."

msgid "Setting Up Windows Shares with Samba"
msgstr "Menyiapkan Share Windows dengan Samba"

msgid "<primary>Samba</primary>"
msgstr "<primary>Samba</primary>"

msgid "<primary>Windows share</primary>"
msgstr "<primary>Share Windows</primary>"

#, fuzzy
#| msgid "<primary>server</primary><secondary>SMTP</secondary>"
msgid "<primary>server</primary><secondary>SMB</secondary>"
msgstr "<primary>peladen</primary><secondary>SMTP</secondary>"

#, fuzzy
#| msgid "<primary>server</primary><secondary>SMTP</secondary>"
msgid "<primary>server</primary><secondary>CIFS</secondary>"
msgstr "<primary>peladen</primary><secondary>SMTP</secondary>"

msgid "Samba is a suite of tools handling the SMB protocol (also known as “CIFS”) on Linux. This protocol is used by Windows for network shares and shared printers."
msgstr "Samba adalah keluarga alat penanganan protokol SMB (juga dikenal sebagai \"CIFS\") di Linux. Protokol ini digunakan oleh Windows untuk share jaringan dan pencetak bersama."

#, fuzzy
#| msgid "<primary>MX</primary><secondary>server</secondary>"
msgid "<primary>SMB</primary><see>Server Message Block</see>"
msgstr "<primary>MX</primary><secondary>peladen</secondary>"

#, fuzzy
#| msgid "<primary>Server Name Indication</primary>"
msgid "<primary>Server Message Block</primary>"
msgstr "<primary>Server Name Indication</primary>"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>client</secondary>"
msgid "<primary>CIFS</primary><see>Common Internet File System</see>"
msgstr "<primary>NFS</primary><secondary>klien</secondary>"

#, fuzzy
#| msgid "<primary>ISP, Internet Service Provider</primary>"
msgid "<primary>Common Internet File System</primary>"
msgstr "<primary>ISP, Internet Service Provider, Penyedia Layanan Internet</primary>"

#, fuzzy
#| msgid "Samba can also act as an Windows domain controller. This is an outstanding tool for ensuring seamless integration of Linux servers and the office desktop machines still running Windows."
msgid "Samba can also act as a Windows domain controller. This is an outstanding tool for ensuring seamless integration of Linux servers and the office desktop machines still running Windows."
msgstr "Samba juga dapat bertindak sebagai pengontrol domain Windows. Ini adalah alat yang luar biasa untuk memastikan mulusnya integrasi server Linux dan  mesin desktop kantor yang masih menjalankan Windows."

msgid "Samba Server"
msgstr "Server Samba"

#, fuzzy
#| msgid "<primary>server</primary><secondary>web</secondary>"
msgid "<primary>server</primary><secondary>Samba</secondary>"
msgstr "<primary>server</primary><secondary>web</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering</secondary>"
msgid "<primary>Samba</primary><secondary>installation</secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>server</secondary>"
msgid "<primary>Samba</primary><secondary>server</secondary>"
msgstr "<primary>surel</primary><secondary>server</secondary>"

msgid "The <emphasis role=\"pkg\">samba</emphasis> package contains the main two servers of Samba 4, <command>smbd</command> and <command>nmbd</command>."
msgstr "Paket <emphasis role=\"pkg\">samba</emphasis> berisi dua server utama Samba 4, <command>smbd</command> dan <command>nmbd</command>."

msgid "<primary><command>smbd</command></primary>"
msgstr "<primary><command>smbd</command></primary>"

msgid "<primary><command>nmbd</command></primary>"
msgstr "<primary><command>nmbd</command></primary>"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>options</secondary>"
msgid "<primary>Samba</primary><secondary><command>smbd</command></secondary>"
msgstr "<primary>NFS</primary><secondary>opsi</secondary>"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>options</secondary>"
msgid "<primary>Samba</primary><secondary><command>nmbd</command></secondary>"
msgstr "<primary>NFS</primary><secondary>opsi</secondary>"

msgid "<emphasis>DOCUMENTATION</emphasis> Going further"
msgstr "<emphasis>DOKUMENTASI</emphasis> Lebih lanjut"

msgid "The Samba server is extremely configurable and versatile, and can address a great many different use cases matching very different requirements and network architectures. This book only focuses on the use case where Samba is used as a standalone server, but it can also be a NT4 Domain Controller or a full Active Directory Domain Controller, or a simple member of an existing domain (which could be a managed by a Windows server)."
msgstr "Samba server sangat dapat dikonfigurasi dan serbaguna, dan dapat menjawab banyak macam kasus yang berbeda sesuai kebutuhan dan arsitektur jaringan yang sangat beraneka. Buku ini hanya berfokus pada kasus penggunaan ketika Samba digunakan sebagai server mandiri, tetapi juga bisa menjadi Domain Controller NT4 atau Active Directory Domain Controller penuh, atau sekedar anggota dari domain yang ada (yang bisa dikelola oleh server Windows)."

msgid "<primary>domain controller</primary>"
msgstr "<primary>pengontrol domain</primary>"

msgid "<primary>Windows domain</primary>"
msgstr "<primary>domain Windows</primary>"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>options</secondary>"
msgid "<primary>Samba</primary><secondary>domain controller</secondary>"
msgstr "<primary>NFS</primary><secondary>opsi</secondary>"

msgid "The <emphasis role=\"pkg\">samba</emphasis> package contains all the necessary manual pages and in <filename>/usr/share/doc/samba/examples/</filename> a wealth of commented example files. If you are looking for a more comprehensive documentation, you may check the <emphasis>Samba</emphasis> website. <ulink type=\"block\" url=\"https://www.samba.org/samba/docs/\" />"
msgstr ""

msgid "<emphasis>TOOL</emphasis> Authenticating with a Windows Server"
msgstr "<emphasis>ALAT</emphasis> Mengotentikasi dengan sebuah Server Windows"

msgid "Winbind gives system administrators the option of using a Windows server as an authentication server. Winbind also integrates cleanly with PAM and NSS. This allows setting up Linux machines where all users of a Windows domain automatically get an account."
msgstr "Winbind memberikan administrator sistem pilihan untuk menggunakan server Windows sebagai server otentikasi. Winbind juga terintegrasi secara bersih dengan PAM dan NSS. Hal ini memungkinkan menyiapkan mesin-mesin Linux di mana semua pengguna domain Windows secara otomatis mendapatkan akun."

msgid "<primary>Winbind</primary>"
msgstr "<primary>Winbind</primary>"

#, fuzzy
#| msgid "More information can be found in the <filename>/usr/share/doc/samba-doc/examples/pam_winbind/</filename> directory."
msgid "More information can be found in the <filename>/usr/share/doc/libpam-winbind/examples/pam_winbind/</filename> directory of the <emphasis role=\"pkg\">libpam-winbind</emphasis> package."
msgstr "Informasi lebih lanjut dapat ditemukan di direktori <filename>/usr/share/doc/samba-doc/examples/pam_winbind/</filename>."

msgid "Configuring with <command>debconf</command>"
msgstr "Menata konfigurasi dengan <command>debconf</command>"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>options</secondary>"
msgid "<primary>Samba</primary><secondary>configuration</secondary>"
msgstr "<primary>NFS</primary><secondary>opsi</secondary>"

#, fuzzy
#| msgid "The package sets up a minimal configuration during the initial installation but you should really run <command>dpkg-reconfigure samba-common</command> to adapt it:"
msgid "The package sets up a minimal configuration during the initial installation by plainly copying <filename>/usr/share/samba/smb.conf</filename>. So you should really run <command>dpkg-reconfigure samba-common</command> to adapt it:"
msgstr "Paket menyiapkan sebuah konfigurasi minimal selama instalasi awal tetapi Anda mestinya menjalankan <command>dpkg-reconfigure samba-common</command> untuk mengadaptasinya:"

#, fuzzy
#| msgid "The first piece of required information is the name of the workgroup where the Samba server will belong (the answer is <literal>FALCOTNET</literal> in our case)."
msgid "On first installation the only piece of required information is the name of the workgroup where the Samba server will belong (the answer is <literal>FALCOTNET</literal> in our case)."
msgstr "Bagian pertama dari informasi yang diperlukan adalah nama workgroup yang akan diikuti oleh server Samba (jawabannya adalah <literal>FALCOTNET</literal> dalam kasus kami)."

#, fuzzy
#| msgid "The package also proposes identifying the WINS server from the information provided by the DHCP daemon. The Falcot Corp administrators rejected this option, since they intend to use the Samba server itself as the WINS server."
msgid "In case of a package update (from the old stable Debian version) or if the SMB server has already been configured to use a WINS server (<literal>wins server</literal>) the package also proposes identifying the WINS server from the information provided by the DHCP daemon. The Falcot Corp administrators rejected this option, since they intend to use the Samba server itself as the WINS server."
msgstr "Paket juga mengusulkan mengidentifikasi server WINS dari informasi yang diberikan oleh daemon DHCP. Para administrator Falcot Corp menolak pilihan ini, karena mereka berniat untuk menggunakan server Samba itu sendiri sebagai server WINS."

msgid "<primary>WINS</primary>"
msgstr "<primary>WINS</primary>"

msgid "Configuring Manually"
msgstr "Mengkonfigurasi Secara Manual"

msgid "Changes to <filename>smb.conf</filename>"
msgstr "Perubahan atas <filename>smb.conf</filename>"

msgid "The requirements at Falcot require other options to be modified in the <filename>/etc/samba/smb.conf</filename> configuration file. The following excerpts summarize the changes that were effected in the <literal>[global]</literal> section."
msgstr "Persyaratan di Falcot membutuhkan pilihan lainnya untuk diubah di berkas konfigurasi <filename>/etc/samba/smb.conf</filename>. Kutipan-kutipan berikut meringkas perubahan yang dilakukan di bagian <literal>[global]</literal>."

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering</secondary>"
msgid "<primary>Samba</primary><secondary><filename>/etc/samba/smb.conf</filename></secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering</secondary>"
msgid "<primary>Samba</primary><secondary><filename>smb.conf</filename></secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan</secondary>"

#, fuzzy
#| msgid ""
#| "\n"
#| "[global]\n"
#| "\n"
#| "## Browsing/Identification ###\n"
#| "\n"
#| "# Change this to the workgroup/NT-domain name your Samba server will part of\n"
#| "   workgroup = FALCOTNET\n"
#| "\n"
#| "# Windows Internet Name Serving Support Section:\n"
#| "# WINS Support - Tells the NMBD component of Samba to enable its WINS Server\n"
#| "   wins support = yes <co id=\"smb.conf.wins\"></co>\n"
#| "\n"
#| "[...]\n"
#| "\n"
#| "####### Authentication #######\n"
#| "\n"
#| "# Server role. Defines in which mode Samba will operate. Possible\n"
#| "# values are \"standalone server\", \"member server\", \"classic primary\n"
#| "# domain controller\", \"classic backup domain controller\", \"active\n"
#| "# directory domain controller\". \n"
#| "#\n"
#| "# Most people will want \"standalone sever\" or \"member server\".\n"
#| "# Running as \"active directory domain controller\" will require first\n"
#| "# running \"samba-tool domain provision\" to wipe databases and create a\n"
#| "# new domain.\n"
#| "   server role = standalone server\n"
#| "\n"
#| "# \"security = user\" is always a good idea. This will require a Unix account\n"
#| "# in this server for every user accessing the server.\n"
#| "   security = user <co id=\"smb.conf.security\"></co>\n"
#| "\n"
#| "[...]"
msgid ""
"\n"
"[...]\n"
"\n"
"[global]\n"
"\n"
"## Browsing/Identification ###\n"
"\n"
"# Change this to the workgroup/NT-domain name your Samba server will part of\n"
"   workgroup = FALCOTNET\n"
"\n"
"# Windows Internet Name Serving Support Section:\n"
"# WINS Support - Tells the NMBD component of Samba to enable its WINS Server\n"
"   wins support = yes <co id=\"smb.conf.wins\"></co>\n"
"\n"
"[...]\n"
"\n"
"####### Authentication #######\n"
"\n"
"# Server role. Defines in which mode Samba will operate. Possible\n"
"# values are \"standalone server\", \"member server\", \"classic primary\n"
"# domain controller\", \"classic backup domain controller\", \"active\n"
"# directory domain controller\". \n"
"#\n"
"# Most people will want \"standalone server\" or \"member server\".\n"
"# Running as \"active directory domain controller\" will require first\n"
"# running \"samba-tool domain provision\" to wipe databases and create a\n"
"# new domain.\n"
"   server role = standalone server\n"
"\n"
"   obey pam restrictions = yes\n"
"\n"
"[...]\n"
"\n"
"# \"security = user\" is always a good idea. This will require a Unix account\n"
"# in this server for every user accessing the server.\n"
"   security = user <co id=\"smb.conf.security\"></co>\n"
"\n"
"[...]"
msgstr ""
"\n"
"[global]\n"
"\n"
"## Browsing/Identification ###\n"
"\n"
"# Change this to the workgroup/NT-domain name your Samba server will part of\n"
"   workgroup = FALCOTNET\n"
"\n"
"# Windows Internet Name Serving Support Section:\n"
"# WINS Support - Tells the NMBD component of Samba to enable its WINS Server\n"
"   wins support = yes <co id=\"smb.conf.wins\"></co>\n"
"\n"
"[...]\n"
"\n"
"####### Authentication #######\n"
"\n"
"# Server role. Defines in which mode Samba will operate. Possible\n"
"# values are \"standalone server\", \"member server\", \"classic primary\n"
"# domain controller\", \"classic backup domain controller\", \"active\n"
"# directory domain controller\". \n"
"#\n"
"# Most people will want \"standalone sever\" or \"member server\".\n"
"# Running as \"active directory domain controller\" will require first\n"
"# running \"samba-tool domain provision\" to wipe databases and create a\n"
"# new domain.\n"
"   server role = standalone server\n"
"\n"
"# \"security = user\" is always a good idea. This will require a Unix account\n"
"# in this server for every user accessing the server.\n"
"   security = user <co id=\"smb.conf.security\"></co>\n"
"\n"
"[...]"

msgid "Indicates that Samba should act as a Netbios name server (WINS) for the local network. This option has been removed from the default configuration in <emphasis role=\"distribution\">Buster</emphasis> and must be added manually if desired."
msgstr ""

msgid "This is the default value for this parameter; however, since it is central to the Samba configuration, filling it explicitly is recommended. Each user must authenticate before accessing any share."
msgstr "Ini adalah nilai default untuk parameter ini; namun karena itu pusat bagi konfigurasi Samba, mengisinya secara eksplisit direkomendasikan. Setiap pengguna harus mengotentikasi sebelum mengakses share apapun."

msgid "Adding Users"
msgstr "Menambahkan Pengguna"

#, fuzzy
#| msgid "<primary>email</primary><secondary>server</secondary>"
msgid "<primary>Samba</primary><secondary>add users</secondary>"
msgstr "<primary>surel</primary><secondary>server</secondary>"

msgid "Each Samba user needs an account on the server; the Unix accounts must be created first, then the user needs to be registered in Samba's database. The Unix step is done quite normally (using <command>adduser</command> for instance)."
msgstr "Setiap pengguna Samba perlu sebuah akun di server; akun Unix harus dibuat terlebih dahulu, kemudian pengguna perlu didaftarkan di basis data Samba. Langkah Unix dilakukan secara normal (menggunakan <command>adduser</command> misalnya)."

msgid "Adding an existing user to the Samba database is a matter of running the <command>smbpasswd -a <replaceable>user</replaceable></command> command; this command asks for the password interactively."
msgstr "Menambahkan pengguna ke basis data Samba adalah sekedar menjalankan perintah <command>smbpasswd -a <replaceable>pengguna</replaceable></command>; perintah ini meminta kata sandi secara interaktif."

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>options</secondary>"
msgid "<primary>Samba</primary><secondary><command>smbpasswd</command></secondary>"
msgstr "<primary>NFS</primary><secondary>opsi</secondary>"

msgid "A user can be deleted with the <command>smbpasswd -x <replaceable>user</replaceable></command> command. A Samba account can also be temporarily disabled (with <command>smbpasswd -d <replaceable>user</replaceable></command>) and re-enabled later (with <command>smbpasswd -e <replaceable>user</replaceable></command>)."
msgstr "Pengguna dapat dihapus dengan perintah <command>smbpasswd - x <replaceable>pengguna</replaceable></command>. Akun Samba juga dapat sementara dinonaktifkan (dengan <command>smbpasswd -d <replaceable>pengguna</replaceable></command>) dan diaktifkan kembali kemudian (dengan <command>smbpasswd -e <replaceable>pengguna</replaceable></command>)."

msgid "Samba Client"
msgstr "Klien Samba"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>client</secondary>"
msgid "<primary>Samba</primary><secondary>client</secondary>"
msgstr "<primary>NFS</primary><secondary>klien</secondary>"

msgid "The client features in Samba allow a Linux machine to access Windows shares and shared printers. The required programs are available in the <emphasis role=\"pkg\">cifs-utils</emphasis> and <emphasis role=\"pkg\">smbclient</emphasis> packages."
msgstr "Fitur klien di Samba memungkinkan mesin Linux untuk mengakses share Windows dan pencetak bersama. Program yang diperlukan tersedia dalam paket yang <emphasis role=\"pkg\">cifs-utils</emphasis> dan <emphasis role=\"pkg\">smbclient</emphasis>."

msgid "<primary><emphasis>smbclient</emphasis></primary>"
msgstr "<primary><emphasis>smbclient</emphasis></primary>"

msgid "<primary><emphasis>cifs-utils</emphasis></primary>"
msgstr "<primary><emphasis>cifs-utils</emphasis></primary>"

msgid "The <command>smbclient</command> Program"
msgstr "Program <command>smbclient</command>"

msgid "The <command>smbclient</command> program queries SMB servers. It accepts a <literal>-U <replaceable>user</replaceable></literal> option, for connecting to the server under a specific identity. <command>smbclient //<replaceable>server</replaceable>/<replaceable>share</replaceable></command> accesses the share in an interactive way similar to the command-line FTP client. <command>smbclient -L <replaceable>server</replaceable></command> lists all available (and visible) shares on a server."
msgstr "Program <command>smbclient</command> meng-query server SMB. Menerima opsi <literal>-U <replaceable>pengguna</replaceable></literal>, untuk menghubungkan ke server di bawah identitas tertentu. <command>smbclient //<replaceable>server</replaceable>/<replaceable>share</replaceable></command> mengakses share dengan cara interaktif yang mirip dengan baris perintah klien FTP. <command>smbclient -L <replaceable>server</replaceable></command> menampilkan daftar seluruh share yang tersedia (dan terlihat) pada server."

msgid "Mounting Windows Shares"
msgstr "Mengait Share Windows"

msgid "The <command>mount</command> command allows mounting a Windows share into the Linux filesystem hierarchy (with the help of <command>mount.cifs</command> provided by <emphasis role=\"pkg\">cifs-utils</emphasis>)."
msgstr "Perintah <command>mount</command> memungkinkan mengait share Windows ke dalam hirarki sistem berkas Linux (dengan bantuan dari <command>mount.cifs</command> yang disediakan oleh <emphasis role=\"pkg\">cifs-utils</emphasis>)."

msgid "<primary><command>mount.cifs</command></primary>"
msgstr "<primary><command>mount.cifs</command></primary>"

msgid "<primary>Windows share, mounting</primary>"
msgstr "<primary>Share Windows, mengait</primary>"

msgid "Mounting a Windows share"
msgstr "Mengait suatu share Windows"

#, fuzzy
#| msgid "<primary>SIP</primary><secondary>trunk</secondary>"
msgid "<primary>Samba</primary><secondary>mount</secondary>"
msgstr "<primary>SIP</primary><secondary>trunk</secondary>"

msgid ""
"\n"
"mount -t cifs //arrakis/shared /shared \\\n"
"      -o credentials=/etc/smb-credentials"
msgstr ""
"\n"
"mount -t cifs //arrakis/shared /shared \\\n"
"      -o credentials=/etc/smb-credentials"

msgid "The <filename>/etc/smb-credentials</filename> file (which must not be readable by users) has the following format:"
msgstr "Berkas <filename>/etc/smb-credentials</filename> (yang harus tidak bisa dibaca oleh pengguna) memiliki format berikut:"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>client</secondary>"
msgid "<primary>Samba</primary><secondary>credentials</secondary>"
msgstr "<primary>NFS</primary><secondary>klien</secondary>"

msgid ""
"\n"
"username = <replaceable>user</replaceable>\n"
"password = <replaceable>password</replaceable>"
msgstr ""
"\n"
"username = <replaceable>pengguna</replaceable>\n"
"password = <replaceable>kata sandi</replaceable>"

msgid "Other options can be specified on the command-line; their full list is available in the <citerefentry><refentrytitle>mount.cifs</refentrytitle> <manvolnum>1</manvolnum></citerefentry> manual page. Two options in particular can be interesting: <literal>uid</literal> and <literal>gid</literal> allow forcing the owner and group of files available on the mount, so as not to restrict access to root."
msgstr "Opsi lain dapat dinyatakan pada baris perintah; daftar lengkap mereka tersedia di halaman manual <citerefentry><refentrytitle>mount.cifs</refentrytitle> <manvolnum>1</manvolnum></citerefentry>. Dua opsi secara khusus bisa menarik: <literal>uid</literal> dan <literal>gid</literal> memungkinkan memaksa pemilik dan kelompok berkas yang tersedia saat mount, agar tidak membatasi akses ke root."

msgid "A mount of a Windows share can also be configured in <filename>/etc/fstab</filename>:"
msgstr "Mount share Windows juga dapat dikonfigurasi di <filename>/etc/fstab</filename>:"

msgid ""
"\n"
"//<replaceable>server</replaceable>/shared /shared cifs credentials=/etc/smb-credentials"
msgstr ""
"\n"
"//<replaceable>server</replaceable>/shared /shared cifs credentials=/etc/smb-credentials"

msgid "Unmounting a SMB/CIFS share is done with the standard <command>umount</command> command."
msgstr "Melepas kait share SMB/CIFS dilakukan dengan perintah standar <command>umount</command>."

msgid "Printing on a Shared Printer"
msgstr "Pencetakan pada Pencetak Bersama"

msgid "CUPS is an elegant solution for printing from a Linux workstation to a printer shared by a Windows machine. When the <emphasis role=\"pkg\">smbclient</emphasis> is installed, CUPS allows installing Windows shared printers automatically."
msgstr "CUPS adalah solusi elegan untuk mencetak dari workstation Linux ke pencetak yang dibagikan oleh mesin Windows. Ketika <emphasis role=\"pkg\">smbclient</emphasis> dipasang, CUPS memungkinkan instalasi pencetak bersama Windows secara otomatis."

msgid "<primary>printing</primary><secondary>network</secondary>"
msgstr "<primary>pencetakan</primary><secondary>jaringan</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>server</secondary>"
msgid "<primary>Samba</primary><secondary>shared printers</secondary>"
msgstr "<primary>surel</primary><secondary>server</secondary>"

msgid "Here are the required steps:"
msgstr "Ini adalah langkah-langkah yang diperlukan:"

msgid "Enter the CUPS configuration interface: <literal>http://localhost:631/admin</literal>"
msgstr "Masukkan konfigurasi antarmuka CUPS: <literal>http://localhost:631/admin</literal>"

msgid "Click on “Add Printer”."
msgstr "Klik pada \"Tambah Pencetak\"."

msgid "Choose the printer device, pick “Windows Printer via SAMBA”."
msgstr "Pilih perangkat pencetak, pilih \"Pencetak Windows melalui SAMBA\"."

msgid "Enter the connection URI for the network printer. It should look like the following:"
msgstr "Masukkan URI koneksi untuk pencetak jaringan. Seharusnya terlihat seperti berikut:"

msgid "<literal>smb://<replaceable>user</replaceable>:<replaceable>password</replaceable>@<replaceable>server</replaceable>/<replaceable>printer</replaceable></literal>."
msgstr "<literal>smb://<replaceable>pengguna</replaceable>:<replaceable>katasandi</replaceable>@<replaceable>server</replaceable>/<replaceable>pencetak</replaceable></literal>."

msgid "Enter the name that will uniquely identify this printer. Then enter the description and location of the printer. Those are the strings that will be shown to end users to help them identify the printers."
msgstr "Masukkan nama yang akan mengidentifikasi pencetak ini secara unik. Kemudian masukkan keterangan dan lokasi pencetak. Mereka adalah string yang akan ditampilkan kepada pengguna akhir untuk membantu mereka mengidentifikasi pencetak."

msgid "Indicate the manufacturer/model of the printer, or directly provide a working printer description file (PPD)."
msgstr "Tunjukkan produsen/model pencetak, atau langsung berikan sebuah berkas deskripsi pencetak (PPD) yang bekerja."

msgid "Voilà, the printer is operational!"
msgstr "Voilà, pencetak operasional!"

msgid "HTTP/FTP Proxy"
msgstr "Proksi HTTP/FTP"

#, fuzzy
#| msgid "<primary>server</primary><secondary>HTTP</secondary>"
msgid "<primary>Proxy</primary><secondary>HTTP</secondary>"
msgstr "<primary>server</primary><secondary>HTTP</secondary>"

#, fuzzy
#| msgid "<primary>SIP</primary><secondary>PBX</secondary>"
msgid "<primary>Proxy</primary><secondary>FTP</secondary>"
msgstr "<primary>SIP</primary><secondary>PBX</secondary>"

msgid "An HTTP/FTP proxy acts as an intermediary for HTTP and/or FTP connections. Its role is twofold:"
msgstr "Suatu proksi HTTP/FTP bertindak sebagai perantara untuk koneksi HTTP dan/atau FTP. Perannya ada dua:"

msgid "Caching: recently downloaded documents are copied locally, which avoids multiple downloads."
msgstr "Penyinggahan: dokumen-dokumen yang baru saja diunduh akan disalin secara lokal, yang menghindari pengunduhan berganda."

msgid "Filtering server: if use of the proxy is mandated (and outgoing connections are blocked unless they go through the proxy), then the proxy can determine whether or not the request is to be granted."
msgstr "Server penyaringan: jika penggunaan proksi wajib (dan koneksi keluar diblokir kecuali mereka pergi melalui proksi), maka proksi dapat menentukan apakah permintaan tersebut dikabulkan."

msgid "<primary>HTTP/FTP proxy</primary>"
msgstr "<primary>Proksi HTTP/FTP</primary>"

msgid "<primary>proxy cache</primary>"
msgstr "<primary>proxy cache</primary>"

msgid "Falcot Corp selected Squid as their proxy server."
msgstr "Falcot Corp memilih Squid sebagai server proksi mereka."

msgid "<primary>Squid</primary>"
msgstr "<primary>Squid</primary>"

msgid "Installing"
msgstr "Memasang"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>options</secondary>"
msgid "<primary>Squid</primary><secondary>installation</secondary>"
msgstr "<primary>NFS</primary><secondary>opsi</secondary>"

#, fuzzy
#| msgid "The <emphasis role=\"pkg\">squid3</emphasis> Debian package only contains the modular (caching) proxy. Turning it into a filtering server requires installing the additional <emphasis role=\"pkg\">squidguard</emphasis> package. In addition, <emphasis role=\"pkg\">squid-cgi</emphasis> provides a querying and administration interface for a Squid proxy."
msgid "The <emphasis role=\"pkg\">squid</emphasis><footnote><para>The <emphasis role=\"pkg\">squid3</emphasis> package, providing Squid until Debian <emphasis role=\"distribution\">Jessie</emphasis>, is now a transitional package and will automatically install <emphasis role=\"pkg\">squid</emphasis>.</para></footnote> Debian package only contains the modular (caching) proxy. Turning it into a filtering server requires installing the additional <emphasis role=\"pkg\">squidguard</emphasis> package. In addition, <emphasis role=\"pkg\">squid-cgi</emphasis> provides a querying and administration interface for a Squid proxy."
msgstr "Paket Debian <emphasis role=\"pkg\">squid3</emphasis> hanya berisi proksi modular (cache). Mengubahnya menjadi sebuah server penyaringan membutuhkan instalasi paket tambahan <emphasis role=\"pkg\">squidguard</emphasis>. Selain itu, <emphasis role=\"pkg\">squid-cgi</emphasis> menyediakan antarmuka administrasi dan kuiri untuk proksi Squid."

msgid "Prior to installing, care should be taken to check that the system can identify its own complete name: the <command>hostname -f</command> must return a fully-qualified name (including a domain). If it does not, then the <filename>/etc/hosts</filename> file should be edited to contain the full name of the system (for instance, <literal>arrakis.falcot.com</literal>). The official computer name should be validated with the network administrator in order to avoid potential name conflicts."
msgstr "Sebelum memasang, perlu dipastikan bahwa sistem dapat mengidentifikasi nama lengkap sendiri: <command>hostname -f</command> harus mengembalikan nama lengkap (termasuk domain). Jika tidak, maka berkas <filename>/etc/hosts</filename> harus disunting agar memuat nama lengkap dari sistem (misalnya, <literal>arrakis.falcot.com</literal>). Nama resmi komputer harus divalidasi dengan administrator jaringan untuk menghindari kemungkinan konflik nama."

msgid "Configuring a Cache"
msgstr "Mengkonfigurasi sebuah Singgahan"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering</secondary>"
msgid "<primary>Squid</primary><secondary><filename>squid.conf</filename></secondary>"
msgstr "<primary>surel</primary> <secondary>penyaringan</secondary>"

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the recipient</secondary>"
msgid "<primary>Squid</primary><secondary><filename>/etc/squid/squid.conf</filename></secondary>"
msgstr "<primary>surel</primary><secondary>penyaringan pada penerima</secondary>"

#, fuzzy
#| msgid "Enabling the caching server feature is a simple matter of editing the <filename>/etc/squid3/squid.conf</filename> configuration file and allowing machines from the local network to run queries through the proxy. The following example shows the modifications made by the Falcot Corp administrators:"
msgid "Enabling the caching server feature is a simple matter of editing the <filename>/etc/squid/squid.conf</filename> configuration file and allowing machines from the local network to run queries through the proxy. The following example shows the modifications made by the Falcot Corp administrators:"
msgstr "Mengaktifkan fitur server singgahan cukup hanya dengan menyunting berkas konfigurasi <filename>/etc/squid3/squid.conf</filename> dan mengizinkan mesin-mesin dari jaringan lokal untuk menjalankan kuiri melalui proksi. Contoh berikut menunjukkan modifikasi yang dibuat oleh administrator Falcot Corp:"

#, fuzzy
#| msgid "The <filename>/etc/squid3/squid.conf</filename> file (excerpts)"
msgid "The <filename>/etc/squid/squid.conf</filename> file (excerpts)"
msgstr "Berkas <filename>/etc/squid3/squid.conf</filename> (kutipan)"

#, fuzzy
#| msgid ""
#| "\n"
#| "# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS\n"
#| "\n"
#| "# Example rule allowing access from your local networks. Adapt\n"
#| "# to list your (internal) IP networks from where browsing should\n"
#| "# be allowed\n"
#| "acl our_networks src 192.168.1.0/24 192.168.2.0/24\n"
#| "http_access allow our_networks\n"
#| "http_access allow localhost\n"
#| "# And finally deny all other access to this proxy\n"
#| "http_access deny all"
msgid ""
"<![CDATA[\n"
"# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS\n"
"#\n"
"include /etc/squid/conf.d/*\n"
"\n"
"# Example rule allowing access from your local networks.\n"
"# Adapt localnet in the ACL section to list your (internal) IP networks\n"
"# from where browsing should be allowed\n"
"\n"
"acl our_networks src 192.168.1.0/24 192.168.2.0/24\n"
"http_access allow our_networks\n"
"http_access allow localhost\n"
"# And finally deny all other access to this proxy\n"
"http_access deny all\n"
"]]>"
msgstr ""
"\n"
"# MASUKKAN ATURAN ANDA DI SINI UNTUK MENGIZINKAN AKSES DARI KLIEN ANDA\n"
"\n"
"# Contoh aturan yang mengizinkan akses dari jaringan lokal Anda.\n"
"# Sesuaikan untuk menyertakan jaringan IP (internal) dari mana\n"
"# meramban mesti diizinkan.\n"
"acl our_networks src 192.168.1.0/24 192.168.2.0/24\n"
"http_access allow our_networks\n"
"http_access allow localhost\n"
"# Dan akhirnya tolak semua akses lain ke proksi ini\n"
"http_access deny all"

msgid "Configuring a Filter"
msgstr "Mengkonfigurasi suatu Penyaring"

#, fuzzy
#| msgid "<command>squid</command> itself does not perform the filtering; this action is delegated to <command>squidGuard</command>. The former must then be configured to interact with the latter. This involves adding the following directive to the <filename>/etc/squid3/squid.conf</filename> file:"
msgid "<command>squid</command> itself does not perform the filtering; this action is delegated to <command>squidGuard</command>. The former must then be configured to interact with the latter. This involves adding the following directive to the <filename>/etc/squid/squid.conf</filename> file:"
msgstr "<command>squid</command> itu sendiri tidak melakukan penyaringan; tindakan ini diserahkan kepada <command>squidGuard</command>. Squid harus kemudian dikonfigurasi untuk berinteraksi dengan yang squidGuard. Ini termasuk menambahkan direktif berikut ke berkas <filename>/etc/squid3/squid.conf</filename>:"

msgid "<primary><command>squidGuard</command></primary>"
msgstr "<primary><command>squidGuard</command></primary>"

#, fuzzy
#| msgid "<primary>virtual domain</primary><secondary>virtual alias domain</secondary>"
msgid "<primary><command>squidGuard</command></primary><secondary><filename>squidGuard.conf</filename></secondary>"
msgstr "<primary>domain virtual</primary><secondary>domain alias virtual</secondary>"

msgid "<primary><command>squidGuard</command></primary><secondary><filename>/etc/squidguard/squidGuard.conf.default</filename></secondary>"
msgstr ""

#, fuzzy
#| msgid "<primary><filename>common-auth</filename></primary>"
msgid "<primary><filename>squidGuard.conf</filename></primary>"
msgstr "<primary><filename>common-auth</filename></primary>"

#, fuzzy
#| msgid "<primary><filename>/etc/pam.d/common-auth</filename></primary>"
msgid "<primary><filename>/etc/squidguard/squidGuard.conf.default</filename></primary>"
msgstr "<primary><filename>/etc/pam.d/common-auth</filename></primary>"

#, fuzzy
#| msgid ""
#| "\n"
#| "url_rewrite_program /usr/bin/squidGuard -c /etc/squid3/squidGuard.conf "
msgid ""
"\n"
"url_rewrite_program /usr/bin/squidGuard -c /etc/squid/squidGuard.conf"
msgstr ""
"\n"
"url_rewrite_program /usr/bin/squidGuard -c /etc/squid3/squidGuard.conf "

#, fuzzy
#| msgid "The <filename>/usr/lib/cgi-bin/squidGuard.cgi</filename> CGI program also needs to be installed, using <filename>/usr/share/doc/squidguard/examples/squidGuard.cgi.gz</filename> as a starting point. Required modifications to this script are the <varname>$proxy</varname> and <varname>$proxymaster</varname> variables (the name of the proxy and the administrator's contact e-mail, respectively). The <varname>$image</varname> and <varname>$redirect</varname> variables should point to existing images representing the rejection of a query."
msgid "The <filename>/usr/lib/cgi-bin/squidGuard.cgi</filename> CGI program also needs to be installed, using <filename>/usr/share/doc/squidguard/examples/squidGuard.cgi.gz</filename> as a starting point. Required modifications to this script are the <varname>$proxy</varname> and <varname>$proxymaster</varname> variables (the name of the proxy and the administrator's contact email, respectively). The <varname>$image</varname> and <varname>$redirect</varname> variables should point to existing images representing the rejection of a query."
msgstr "Program CGI <filename>/usr/lib/cgi-bin/squidGuard.cgi</filename> juga perlu dipasang, menggunakan <filename>/usr/share/doc/squidguard/examples/squidGuard.cgi.gz</filename> sebagai titik awal. Modifikasi yang diperlukan pada skrip ini adalah variabel <varname>$proxy</varname> dan <varname>$proxymaster</varname> (masing-masing adalah nama proksi dan surel kontak administrator). Variabel <varname>$image</varname> dan <varname>$redirect</varname> harus menunjuk ke gambar yang ada yang mewakili penolakan kuiri."

#, fuzzy
#| msgid "The filter is enabled with the <command>service squid3 reload</command> command. However, since the <emphasis role=\"pkg\">squidguard</emphasis> package does no filtering by default, it is the administrator's task to define the policy. This can be done by creating the <filename>/etc/squid3/squidGuard.conf</filename> file (using <filename>/etc/squidguard/squidGuard.conf.default</filename> as template if required)."
msgid "The filter is enabled with the <command>service squid reload</command> command. However, since the <emphasis role=\"pkg\">squidguard</emphasis> package does no filtering by default, it is the administrator's task to define the policy. This can be done by creating the <filename>/etc/squid/squidGuard.conf</filename> file (using <filename>/etc/squidguard/squidGuard.conf.default</filename> as template if required)."
msgstr "Penyaring diaktifkan dengan perintah <command>service squid3 reload</command>. Namun, karena paket <emphasis role=\"pkg\">squidguard</emphasis> tidak melakukan penyaringan secara default, itu adalah tugas administrator untuk menentukan kebijakan. Ini dapat dilakukan dengan membuat berkas <filename>/etc/squid3/squidGuard.conf</filename> (menggunakan <filename>/etc/squidguard/squidGuard.conf.default</filename> sebagai templat jika diperlukan)."

msgid "The working database must be regenerated with <command>update-squidguard</command> after each change of the <command>squidGuard</command> configuration file (or one of the lists of domains or URLs it mentions). The configuration file syntax is documented on the following website: <ulink type=\"block\" url=\"http://www.squidguard.org/Doc/configure.html\" />"
msgstr "Basis data kerja harus dibuat ulang dengan <command>update-squidguard</command> setelah setiap perubahan berkas konfigurasi <command>squidGuard</command> (atau salah satu daftar domain atau URL yang disebutkan). Sintaks berkas konfigurasi didokumentasikan pada situs web berikut: <ulink type=\"block\" url=\"http://www.squidguard.org/Doc/configure.html\" />"

msgid "<primary><command>update-squidguard</command></primary>"
msgstr "<primary><command>update-squidguard</command></primary>"

#, fuzzy
#| msgid "<primary><command>update-squidguard</command></primary>"
msgid "<primary>Squid</primary><secondary><command>update-squidguard</command></secondary>"
msgstr "<primary><command>update-squidguard</command></primary>"

#, fuzzy
#| msgid "<primary>NFS</primary><secondary>options</secondary>"
msgid "<primary>Squid</primary><secondary><command>squidGuard</command></secondary>"
msgstr "<primary>NFS</primary><secondary>opsi</secondary>"

#, fuzzy
#| msgid "<emphasis>ALTERNATIVE</emphasis> DansGuardian"
msgid "<emphasis>ALTERNATIVE</emphasis> E2guardian (a DansGuardian Fork)"
msgstr "<emphasis>ALTERNATIF</emphasis> DansGuardian"

msgid "<primary><emphasis role=\"pkg\">dansguardian</emphasis></primary>"
msgstr "<primary><emphasis role=\"pkg\">dansguardian</emphasis></primary>"

#, fuzzy
#| msgid "<primary><emphasis role=\"pkg\">dansguardian</emphasis></primary>"
msgid "<primary><emphasis role=\"pkg\">e2guardian</emphasis></primary>"
msgstr "<primary><emphasis role=\"pkg\">dansguardian</emphasis></primary>"

#, fuzzy
#| msgid "The <emphasis role=\"pkg\">dansguardian</emphasis> package is an alternative to <emphasis>squidguard</emphasis>. This software does not simply handle a blacklist of forbidden URLs, but it can take advantage of the PICS system (<emphasis>Platform for Internet Content Selection</emphasis>) to decide whether a page is acceptable by dynamic analysis of its contents."
msgid "The <emphasis role=\"pkg\">e2guardian</emphasis> package, a DansGuardian fork, is an alternative to <emphasis role=\"pkg\">squidguard</emphasis>. This software does not simply handle a blacklist of forbidden URLs, but it can take advantage of the <acronym>PICS</acronym><footnote><para><acronym>PICS</acronym> has been superseded by the <emphasis>Protocol for Web Description Resources</emphasis> (<acronym>POWDER</acronym> system: <ulink url=\"https://www.w3.org/2009/08/pics_superseded.html\" />. <indexterm><primary>POWDER</primary><see>Protocol for Web Description Resources</see></indexterm> <indexterm><primary>Protocol for Web Description Resources</primary></indexterm> </para></footnote> (<emphasis>Platform for Internet Content Selection</emphasis>) to decide whether a page is acceptable by dynamic analysis of its contents."
msgstr "Paket <emphasis role=\"pkg\">dansguardian</emphasis> adalah sebuah alternatif untuk <emphasis>squidguard</emphasis>. Perangkat lunak ini tidak hanya menangani daftar hitam URL yang terlarang, tetapi dapat mengambil keuntungan dari sistem PICS (<emphasis>Platform for Internet Content Selection</emphasis>) untuk memutuskan apakah sebuah halaman dapat diterima dengan analisis dinamis isinya."

#, fuzzy
#| msgid "<primary>email</primary><secondary>filtering on the recipient</secondary>"
msgid "<primary>PICS</primary><see>Platform for Internet Content Selection</see>"
msgstr "<primary>surel</primary><secondary>penyaringan pada penerima</secondary>"

#, fuzzy
#| msgid "<primary>ISP, Internet Service Provider</primary>"
msgid "<primary>Platform for Internet Content Selection</primary>"
msgstr "<primary>ISP, Internet Service Provider, Penyedia Layanan Internet</primary>"

msgid "LDAP Directory"
msgstr "Direktori LDAP"

msgid "<primary>LDAP</primary>"
msgstr "<primary>LDAP</primary>"

msgid "<primary>OpenLDAP</primary>"
msgstr "<primary>OpenLDAP</primary>"

msgid "<primary>directory, LDAP</primary>"
msgstr "<primary>direktori, LDAP</primary>"

msgid "OpenLDAP is an implementation of the LDAP protocol; in other words, it is a special-purpose database designed for storing directories. In the most common use case, using an LDAP server allows centralizing management of user accounts and the related permissions. Moreover, an LDAP database is easily replicated, which allows setting up multiple synchronized LDAP servers. When the network and the user base grows quickly, the load can then be balanced across several servers."
msgstr "OpenLDAP adalah sebuah implementasi protokol LDAP; dengan kata lain, itu adalah sebuah basis data tujuan khusus yang dirancang untuk menyimpan direktori. Dalam kasus penggunaan yang paling umum, menggunakan server LDAP memungkinkan pemusatan manajemen akun pengguna dan izin terkait. Selain itu, sebuah basis data LDAP mudah direplikasi, yang memungkinkan menyiapkan beberapa server LDAP yang tersinkronisasi. Ketika jaringan dan basis pengguna tumbuh cepat, beban kemudian dapat diseimbangkan ke beberapa server."

msgid "LDAP data is structured and hierarchical. The structure is defined by “schemas” which describe the kind of objects that the database can store, with a list of all their possible attributes. The syntax used to refer to a particular object in the database is based on this structure, which explains its complexity."
msgstr "Data LDAP terstruktur dan hirarkis. Struktur didefinisikan oleh \"skema\" yang menggambarkan jenis objek yang dapat disimpan oleh basis data, dengan daftar semua atribut mereka yang mungkin. Sintaks yang digunakan untuk merujuk pada suatu obyek tertentu dalam basis data tersebut berdasarkan atas struktur ini, yang menjelaskan kompleksitasnya."

msgid "The <emphasis role=\"pkg\">slapd</emphasis> package contains the OpenLDAP server. The <emphasis role=\"pkg\">ldap-utils</emphasis> package includes command-line tools for interacting with LDAP servers."
msgstr "Paket <emphasis role=\"pkg\">slapd</emphasis> berisi server OpenLDAP. Paket <emphasis role=\"pkg\">ldap-utils</emphasis> memuat alat bantu baris perintah untuk berinteraksi dengan server LDAP."

msgid "<primary><emphasis>slapd</emphasis></primary>"
msgstr "<primary><emphasis>slapd</emphasis></primary>"

#, fuzzy
#| msgid "Installing <emphasis role=\"pkg\">slapd</emphasis> usually asks very few questions and the resulting database is unlikely to suit your needs. Fortunately a simple <command>dpkg-reconfigure slapd</command> will let you reconfigure the LDAP database with more details:"
msgid "Installing <emphasis role=\"pkg\">slapd</emphasis> usually asks only for the administrator's password and the resulting database is unlikely to suit your needs. Fortunately a simple <command>dpkg-reconfigure slapd</command> will let you reconfigure the LDAP database with more details:"
msgstr "Memasang <emphasis role=\"pkg\">slapd</emphasis> biasanya mengajukan sangat sedikit pertanyaan dan basis data yang dihasilkan sangat boleh jadi tidak sesuai dengan kebutuhan Anda. Untungnya sekedar <command>dpkg-reconfigure slapd</command> memungkinkan Anda mengkonfigurasi ulang basis data LDAP dengan lebih banyak rincian:"

msgid "Omit OpenLDAP server configuration? No, of course, we want to configure this service."
msgstr "Abaikan konfigurasi server OpenLDAP? Tidak, tentu saja, kami ingin mengkonfigurasi layanan ini."

msgid "DNS domain name: “<literal>falcot.com</literal>”."
msgstr "Nama domain DNS: \"<literal>falcot.com</literal>\"."

msgid "Organization name: “Falcot Corp”."
msgstr "Nama organisasi: \"Falcot Corp\"."

msgid "An administrative passwords needs to be typed in."
msgstr "Kata sandi administratif harus diketikkan."

msgid "Database backend to use: “MDB”."
msgstr "Backend basis data yang dipakai: \"MDB\"."

msgid "Do you want the database to be removed when <emphasis role=\"pkg\">slapd</emphasis> is purged? No. No point in risking losing the database in case of a mistake."
msgstr "Apakah Anda ingin basis data dihapus ketika <emphasis role=\"pkg\">slapd</emphasis> dibersihkan? Tidak. Tidak ada gunanya berrisiko kehilangan basis data jika terjadi kesalahan."

msgid "Move old database? This question is only asked when the configuration is attempted while a database already exists. Only answer “yes” if you actually want to start again from a clean database, for instance if you run <command>dpkg-reconfigure slapd</command> right after the initial installation."
msgstr "Memindahkan basis data lama? Ini hanya ditanyakan ketika konfigurasi diupayakan sementara basis data yang sudah ada. Hanya jawab \"yes\" jika Anda benar-benar ingin mulai lagi dari basis data yang bersih, misalnya jika Anda menjalankan <command>dpkg-reconfigure slapd</command> tepat setelah instalasi awal."

msgid "<emphasis>BACK TO BASICS</emphasis> LDIF format"
msgstr "<emphasis>KEMBALI KE DASAR</emphasis> format LDIF"

msgid "An LDIF file (<emphasis>LDAP Data Interchange Format</emphasis>) is a portable text file describing the contents of an LDAP database (or a portion thereof); this can then be used to inject the data into any other LDAP server."
msgstr "Suatu berkas LDIF (<emphasis>LDAP Data Interchange Format</emphasis>) adalah sebuah berkas teks portabel yang menggambarkan isi dari basis data LDAP (atau bagian daripadanya); ini kemudian dapat digunakan untuk menyuntikkan data ke server LDAP lain."

msgid "<primary>LDIF</primary>"
msgstr "<primary>LDIF</primary>"

msgid "A minimal database is now configured, as demonstrated by the following query:"
msgstr "Basis data minimal sekarang dikonfigurasi, seperti yang ditunjukkan oleh kuiri berikut:"

#, fuzzy
#| msgid ""
#| "\n"
#| "<computeroutput>$ </computeroutput><userinput>ldapsearch -x -b dc=falcot,dc=com</userinput>\n"
#| "<computeroutput># extended LDIF\n"
#| "#\n"
#| "# LDAPv3\n"
#| "# base &lt;dc=falcot,dc=com&gt; with scope sub\n"
#| "# filter: (objectclass=*)\n"
#| "# requesting: ALL\n"
#| "#\n"
#| "\n"
#| "# falcot.com\n"
#| "dn: dc=falcot,dc=com\n"
#| "objectClass: top\n"
#| "objectClass: dcObject\n"
#| "objectClass: organization\n"
#| "o: Falcot Corp\n"
#| "dc: falcot\n"
#| "\n"
#| "# admin, falcot.com\n"
#| "dn: cn=admin,dc=falcot,dc=com\n"
#| "objectClass: simpleSecurityObject\n"
#| "objectClass: organizationalRole\n"
#| "cn: admin\n"
#| "description: LDAP administrator\n"
#| "\n"
#| "# search result\n"
#| "search: 2\n"
#| "result: 0 Success\n"
#| "\n"
#| "# numResponses: 3\n"
#| "# numEntries: 2\n"
#| "</computeroutput>"
msgid ""
"\n"
"<computeroutput>$ </computeroutput><userinput>ldapsearch -x -b dc=falcot,dc=com</userinput>\n"
"<computeroutput># extended LDIF\n"
"#\n"
"# LDAPv3\n"
"# base &lt;dc=falcot,dc=com&gt; with scope subtree\n"
"# filter: (objectclass=*)\n"
"# requesting: ALL\n"
"#\n"
"\n"
"# falcot.com\n"
"dn: dc=falcot,dc=com\n"
"objectClass: top\n"
"objectClass: dcObject\n"
"objectClass: organization\n"
"o: Falcot Corp\n"
"dc: falcot\n"
"\n"
"# admin, falcot.com\n"
"dn: cn=admin,dc=falcot,dc=com\n"
"objectClass: simpleSecurityObject\n"
"objectClass: organizationalRole\n"
"cn: admin\n"
"description: LDAP administrator\n"
"\n"
"# search result\n"
"search: 2\n"
"result: 0 Success\n"
"\n"
"# numResponses: 3\n"
"# numEntries: 2\n"
"</computeroutput>"
msgstr ""
"\n"
"<computeroutput>$ </computeroutput><userinput>ldapsearch -x -b dc=falcot,dc=com</userinput>\n"
"<computeroutput># extended LDIF\n"
"#\n"
"# LDAPv3\n"
"# base &lt;dc=falcot,dc=com&gt; with scope sub\n"
"# filter: (objectclass=*)\n"
"# requesting: ALL\n"
"#\n"
"\n"
"# falcot.com\n"
"dn: dc=falcot,dc=com\n"
"objectClass: top\n"
"objectClass: dcObject\n"
"objectClass: organization\n"
"o: Falcot Corp\n"
"dc: falcot\n"
"\n"
"# admin, falcot.com\n"
"dn: cn=admin,dc=falcot,dc=com\n"
"objectClass: simpleSecurityObject\n"
"objectClass: organizationalRole\n"
"cn: admin\n"
"description: LDAP administrator\n"
"\n"
"# search result\n"
"search: 2\n"
"result: 0 Success\n"
"\n"
"# numResponses: 3\n"
"# numEntries: 2\n"
"</computeroutput>"

msgid "The query returned two objects: the organization itself, and the administrative user."
msgstr "Kuiri mengembalikan dua objek: organisasi itu sendiri, dan pengguna administratif."

msgid "Filling in the Directory"
msgstr "Mengisi Direktori"

msgid "Since an empty database is not particularly useful, we are going to inject into it all the existing directories; this includes the users, groups, services and hosts databases."
msgstr "Karena basis data kosong yang tidak terlalu berguna, kita akan menyuntikkan ke dalamnya semua direktori yang ada; ini mencakup basis data pengguna, grup, layanan, dan host."

msgid "The <emphasis role=\"pkg\">migrationtools</emphasis> package provides a set of scripts dedicated to extract data from the standard Unix directories (<filename>/etc/passwd</filename>, <filename>/etc/group</filename>, <filename>/etc/services</filename>, <filename>/etc/hosts</filename> and so on), convert this data, and inject it into the LDAP database."
msgstr "Paket <emphasis role=\"pkg\">migrationtools</emphasis> menyediakan seperangkat skrip yang didedikasikan untuk mengekstrak data dari direktori standar Unix (<filename>/etc/passwd</filename>, <filename>/etc/group</filename>, <filename>/etc/services</filename>, <filename>/etc/hosts</filename>, dan seterusnya), mengkonversi data ini dan menyuntikkan ke basis data LDAP."

msgid "<primary><emphasis role=\"pkg\">migrationtools</emphasis></primary>"
msgstr "<primary><emphasis role=\"pkg\">migrationtools</emphasis></primary>"

msgid "Once the package is installed, the <filename>/etc/migrationtools/migrate_common.ph</filename> must be edited; the <varname>IGNORE_UID_BELOW</varname> and <varname>IGNORE_GID_BELOW</varname> options need to be enabled (uncommenting them is enough), and <varname>DEFAULT_MAIL_DOMAIN</varname>/<varname>DEFAULT_BASE</varname> need to be updated."
msgstr "Setelah paket terpasang, <filename>/etc/migrationtools/migrate_common.ph</filename> harus disunting; pilihan <varname>IGNORE_UID_BELOW</varname> dan <varname>IGNORE_GID_BELOW</varname> perlu diaktifkan (cukup dengan manghapus tanda komentar), dan <varname>DEFAULT_MAIL_DOMAIN</varname>/<varname>DEFAULT_BASE</varname> perlu diperbarui."

msgid "The actual migration operation is handled by the <command>migrate_all_online.sh</command> command, as follows:"
msgstr "Operasi migrasi sebenarnya, ditangani oleh perintah <command>migrate_all_online.sh</command>, sebagai berikut:"

msgid ""
"\n"
"<computeroutput># </computeroutput><userinput>cd /usr/share/migrationtools</userinput>\n"
"<computeroutput># </computeroutput><userinput>LDAPADD=\"/usr/bin/ldapadd -c\" ETC_ALIASES=/dev/null ./migrate_all_online.sh</userinput>"
msgstr ""
"\n"
"<computeroutput># </computeroutput><userinput>cd /usr/share/migrationtools</userinput>\n"
"<computeroutput># </computeroutput><userinput>LDAPADD=\"/usr/bin/ldapadd -c\" ETC_ALIASES=/dev/null ./migrate_all_online.sh</userinput>"

msgid "The <command>migrate_all_online.sh</command> asks a few questions about the LDAP database into which the data is to be migrated. <xref linkend=\"tab-migrate-all\" xrefstyle=\"select: label nopage\" /> summarizes the answers given in the Falcot use-case."
msgstr "<command>migrate_all_online.sh</command> menanyakan beberapa pertanyaan tentang basis data LDAP tempat tujuan data akan dimigrasi. <xref linkend=\"tab-migrate-all\" xrefstyle=\"select: label nopage\" /> meringkas jawaban yang diberikan dalam use-case Falcot."

msgid "Answers to questions asked by the <command>migrate_all_online.sh</command> script"
msgstr "Jawaban atas pertanyaan yang diajukan oleh skrip <command>migrate_all_online.sh</command>"

msgid "Question"
msgstr "Pertanyaan"

msgid "Answer"
msgstr "Jawaban"

msgid "X.500 naming context"
msgstr "konteks penamaan X.500"

msgid "<literal>dc=falcot,dc=com</literal>"
msgstr "<literal>dc=falcot,dc=com</literal>"

msgid "LDAP server hostname"
msgstr "Nama host server LDAP"

msgid "<literal>localhost</literal>"
msgstr "<literal>localhost</literal>"

msgid "Manager DN"
msgstr "Manajer DN"

msgid "<literal>cn=admin,dc=falcot,dc=com</literal>"
msgstr "<literal>cn=admin,dc=falcot,dc=com</literal>"

msgid "Bind credentials"
msgstr "Kredensial Bind"

msgid "the administrative password"
msgstr "kata sandi administratif"

msgid "Create DUAConfigProfile"
msgstr "Buat DUAConfigProfile"

msgid "no"
msgstr "tidak"

msgid "We deliberately ignore migration of the <filename>/etc/aliases</filename> file, since the standard schema as provided by Debian does not include the structures that this script uses to describe email aliases. Should we want to integrate this data into the directory, the <filename>/etc/ldap/schema/misc.schema</filename> file should be added to the standard schema."
msgstr "Kami sengaja mengabaikan migrasi dari berkas <filename>/etc/aliases</filename>, karena skema standar yang disediakan oleh Debian tidak termasuk struktur yang menggunakan skrip ini untuk menggambarkan alias email. Jika kita ingin mengintegrasikan data ini ke direktori, berkas <filename>/etc/ldap/schema/misc.schema</filename> harus ditambahkan ke skema standar."

msgid "<emphasis>TOOL</emphasis> Browsing an LDAP directory"
msgstr "<emphasis>ALAT</emphasis> Meramban suatu direktori LDAP"

msgid "The <command>jxplorer</command> command (in the package of the same name) is a graphical tool allowing to browse and edit an LDAP database. It is an interesting tool that provides an administrator with a good overview of the hierarchical structure of the LDAP data."
msgstr "Perintah <command>jxplorer</command> (dalam paket dengan nama yang sama) adalah alat grafis yang memungkinkan untuk meramban dan menyunting suatu basis data LDAP. Ini adalah alat yang menarik yang menyediakan gambaran yang baik ke administrator tentang struktur hirarkis data LDAP."

msgid "<primary><command>jxplorer</command></primary>"
msgstr "<primary><command>jxplorer</command></primary>"

msgid "Also note the use of the <literal>-c</literal> option to the <command>ldapadd</command> command; this option requests that processing doesn't stop in case of error. Using this option is required because converting the <filename>/etc/services</filename> often generates a few errors that can safely be ignored."
msgstr "Perhatikan juga penggunaan opsi <literal>-c</literal> untuk perintah <command>ldapadd</command>; opsi ini meminta pengolahan tidak berhenti saat ada kesalahan. Penggunaan opsi ini diperlukan karena mengubah <filename>/etc/services</filename> sering menghasilkan beberapa kesalahan yang aman untuk diabaikan."

msgid "Managing Accounts with LDAP"
msgstr "Mengelola akun dengan LDAP"

msgid "Now the LDAP database contains some useful information, the time has come to make use of this data. This section focuses on how to configure a Linux system so that the various system directories use the LDAP database."
msgstr "Sekarang basis data LDAP berisi beberapa informasi yang berguna, waktunya telah tiba untuk memakai data ini. Bagian ini berfokus pada bagaimana mengkonfigurasi sistem Linux sehingga berbagai sistem direktori memanfaatkan basis data LDAP."

msgid "Configuring NSS"
msgstr "Mengkonfigurasi NSS"

msgid "The NSS system (Name Service Switch, see sidebar <xref linkend=\"sidebar.intro-nss\" />) is a modular system designed to define or fetch information for system directories. Using LDAP as a source of data for NSS requires installing the <emphasis role=\"pkg\">libnss-ldap</emphasis> package. Its installation asks a few questions; the answers are summarized in <xref linkend=\"tab-libnss-ldap\" xrefstyle=\"select: label nopage\" />."
msgstr "Sistem NSS (Name Service Switch, lihat bilah sisi <xref linkend=\"sidebar.intro-nss\" />) adalah sebuah sistem modular yang dirancang untuk menentukan atau mengambil informasi untuk direktori sistem. Menggunakan LDAP sebagai sumber data untuk NSS memerlukan memasang paket <emphasis role=\"pkg\">libnss-ldap</emphasis>. Instalasi menanyakan beberapa pertanyaan; jawaban dirangkum dalam <xref linkend=\"tab-libnss-ldap\" xrefstyle=\"select: label nopage\" />."

msgid "<primary><emphasis>libnss-ldap</emphasis></primary>"
msgstr "<primary><emphasis>libnss-ldap</emphasis></primary>"

msgid "Configuring the <emphasis role=\"pkg\">libnss-ldap</emphasis> package"
msgstr "Mengatur konfigurasi paket <emphasis role=\"pkg\">libnss-ldap</emphasis>"

msgid "LDAP server Uniform Resource Identifier"
msgstr "Uniform Resource Identifier server LDAP"

#, fuzzy
#| msgid "<literal>ldap://ldap.falcot.com</literal>"
msgid "<literal>ldapi://ldap.falcot.com</literal>"
msgstr "<literal>ldap://ldap.falcot.com</literal>"

msgid "Distinguished name of the search base"
msgstr "Distinguished name dari basis pencarian"

msgid "LDAP version to use"
msgstr "Versi LDAP yang akan dipakai"

msgid "<literal>3</literal>"
msgstr "<literal>3</literal>"

msgid "LDAP account for root"
msgstr "Akun LDAP untuk root"

msgid "LDAP root account password"
msgstr "Kata sandi akun root LDAP"

#, fuzzy
#| msgid "Allow LDAP admin account to behave like local root?"
msgid "Allow LDAP admin account behave like local root?"
msgstr "Izinkan akun admin LDAP untuk berperilaku seperti root lokal?"

#, fuzzy
#| msgid "<literal>3</literal>"
msgid "<literal>yes</literal>"
msgstr "<literal>3</literal>"

msgid "Does the LDAP database require login?"
msgstr "Apakah basis data LDAP memerlukan login?"

#, fuzzy
#| msgid "The <filename>/etc/nsswitch.conf</filename> file then needs to be modified, so as to configure NSS to use the freshly-installed <command>ldap</command> module."
msgid "The <filename>/etc/nsswitch.conf</filename> file then needs to be modified, so as to configure NSS to use the freshly-installed <command>ldap</command> module. You can use the example provided in /usr/share/doc/libnss-ldap/examples/nsswitch.ldap or edit your existing configuration."
msgstr "Berkas <filename>/etc/nsswitch.conf</filename> lalu perlu diubah, sehingga mengkonfigurasi NSS untuk menggunakan modul <command>ldap</command> yang baru dipasang."

msgid "The <filename>/etc/nsswitch.conf</filename> file"
msgstr "Berkas <filename>/etc/nsswitch.conf</filename>"

msgid ""
"\n"
"#ident $Id: nsswitch.ldap,v 2.4 2003/10/02 02:36:25 lukeh Exp $\n"
"#\n"
"# An example file that could be copied over to /etc/nsswitch.conf; it\n"
"# uses LDAP conjunction with files.\n"
"#\n"
"# \"hosts:\" and \"services:\" in this file are used only if the\n"
"# /etc/netconfig file has a \"-\" for nametoaddr_libs of \"inet\" transports.\n"
"\n"
"# the following lines obviate the \"+\" entry in /etc/passwd and /etc/group.\n"
"passwd:                files ldap\n"
"shadow:                files ldap\n"
"group:                files ldap\n"
"\n"
"# consult DNS first, we will need it to resolve the LDAP host. (If we\n"
"# can't resolve it, we're in infinite recursion, because libldap calls\n"
"# gethostbyname(). Careful!)\n"
"hosts:                dns ldap\n"
"\n"
"# LDAP is nominally authoritative for the following maps.\n"
"services:   ldap [NOTFOUND=return] files\n"
"networks:   ldap [NOTFOUND=return] files\n"
"protocols:  ldap [NOTFOUND=return] files\n"
"rpc:        ldap [NOTFOUND=return] files\n"
"ethers:     ldap [NOTFOUND=return] files\n"
"\n"
"# no support for netmasks, bootparams, publickey yet.\n"
"netmasks:   files\n"
"bootparams: files\n"
"publickey:  files\n"
"automount:  files\n"
"\n"
"# I'm pretty sure nsswitch.conf is consulted directly by sendmail,\n"
"# here, so we can't do much here. Instead, use bbense's LDAP\n"
"# rules ofr sendmail.\n"
"aliases:    files\n"
"sendmailvars:   files\n"
"\n"
"# Note: there is no support for netgroups on Solaris (yet)\n"
"netgroup:   ldap [NOTFOUND=return] files\n"
"\n"
msgstr ""

msgid "The <command>ldap</command> module is usually inserted before others, and it will therefore be queried first. The notable exception is the <literal>hosts</literal> service since contacting the LDAP server requires consulting DNS first (to resolve <literal>ldap.falcot.com</literal>). Without this exception, a hostname query would try to ask the LDAP server; this would trigger a name resolution for the LDAP server, and so on in an infinite loop."
msgstr "Modul <command>ldap</command> biasanya dimasukkan sebelum yang lain, dan itu karena itu dikuiri pertama. Pengecualian adalah layanan <literal>hosts</literal> karena menghubungi server LDAP membutuhkan terlebih dahulu konsultasi ke DNS (untuk me-resolve <literal>ldap.falcot.com</literal>). Tanpa pengecualian ini, suatu kuiri nama host akan mencoba untuk bertanya ke server LDAP; ini akan memicu resolusi nama untuk server LDAP, dan seterusnya dalam suatu pengulangan tanpa ujung."

msgid "If the LDAP server should be considered authoritative (and the local files used by the <command>files</command> module disregarded), services can be configured with the following syntax:"
msgstr "Jika server LDAP mesti dianggap otoritatif (dan berkas lokal yang digunakan oleh modul <command>files</command> diabaikan), layanan dapat dikonfigurasi dengan sintaks berikut:"

msgid "<literal><replaceable>service</replaceable>: ldap [NOTFOUND=return] files</literal>."
msgstr "<literal><replaceable>service</replaceable>: ldap [NOTFOUND=return] files</literal>."

msgid "If the requested entry does not exist in the LDAP database, the query will return a “not existing” reply even if the resource does exist in one of the local files; these local files will only be used when the LDAP service is down."
msgstr "Jika entri yang diminta tidak ada di basis data LDAP, kuiri akan mengembalikan jawaban \"tidak ada\" bahkan jika sumber daya ada di salah satu berkas lokal; berkas-berkas lokal ini hanya dapat digunakan ketika layanan LDAP mati."

msgid "Configuring PAM"
msgstr "Mengkonfigurasi PAM"

msgid "This section describes a PAM configuration (see sidebar <xref linkend=\"sidebar.intro-pam\" />) that will allow applications to perform the required authentications against the LDAP database."
msgstr "Bagian ini menjelaskan tentang konfigurasi PAM (lihat bilah sisi <xref linkend=\"sidebar.intro-pam\" />) yang akan memungkinkan aplikasi untuk melakukan otentikasi yang diperlukan terhadap basis data LDAP."

msgid "<emphasis>CAUTION</emphasis> Broken authentication"
msgstr "<emphasis>HATI-HATI</emphasis> Otentikasi yang rusak"

msgid "Changing the standard PAM configuration used by various programs is a sensitive operation. A mistake can lead to broken authentication, which could prevent logging in. Keeping a root shell open is therefore a good precaution. If configuration errors occur, they can be then fixed and the services restarted with minimal effort."
msgstr "Mengubah konfigurasi PAM standar yang digunakan oleh berbagai program adalah sebuah operasi yang sensitif. Kesalahan dapat menyebabkan otentikasi yang rusak, yang dapat mencegah masuk. Mempertahankan sebuah shell root terbuka oleh karena itu adalah tindakan pencegahan yang baik. Jika terjadi kesalahan konfigurasi, mereka dapat kemudian diperbaiki dan layanan dijalankan ulang dengan usaha minimum."

msgid "The LDAP module for PAM is provided by the <emphasis role=\"pkg\">libpam-ldap</emphasis> package. Installing this package asks a few questions very similar to those in <emphasis role=\"pkg\">libnss-ldap</emphasis>; some configuration parameters (such as the URI for the LDAP server) are even actually shared with the <emphasis role=\"pkg\">libnss-ldap</emphasis> package. Answers are summarized in <xref linkend=\"tab-libpam-ldap\" xrefstyle=\"select: label nopage\" />."
msgstr "Modul LDAP untuk PAM disediakan oleh paket <emphasis role=\"pkg\">libpam-ldap</emphasis>. Memasang paket ini menanyakan beberapa pertanyaan sangat mirip dengan yang di <emphasis role=\"pkg\">libnss-ldap</emphasis>; beberapa parameter konfigurasi (seperti URI untuk server LDAP) bahkan dipakai bersama dengan paket <emphasis role=\"pkg\">libnss-ldap</emphasis>. Jawaban dirangkum dalam <xref linkend=\"tab-libpam-ldap\" xrefstyle=\"select: label nopage\" />."

msgid "<primary><emphasis>libpam-ldap</emphasis></primary>"
msgstr "<primary><emphasis>libpam-ldap</emphasis></primary>"

msgid "Configuration of <emphasis>libpam-ldap</emphasis>"
msgstr "Konfigurasi <emphasis>libpam-ldap</emphasis>"

msgid "Allow LDAP admin account to behave like local root?"
msgstr "Izinkan akun admin LDAP untuk berperilaku seperti root lokal?"

msgid "Yes. This allows using the usual <command>passwd</command> command for changing passwords stored in the LDAP database."
msgstr "Ya. Hal ini memungkinkan menggunakan perintah <command>passwd</command> yang biasa untuk mengubah kata sandi yang disimpan dalam basis data LDAP."

msgid "Does the LDAP database require logging in?"
msgstr "Apakah basis data LDAP memerlukan login?"

msgid "the LDAP database administrative password"
msgstr "kata sandi administratif basis data LDAP"

msgid "Local encryption algorithm to use for passwords"
msgstr "Algoritma enkripsi lokal yang digunakan untuk kata sandi"

msgid "crypt"
msgstr "crypt"

msgid "Installing <emphasis role=\"pkg\">libpam-ldap</emphasis> automatically adapts the default PAM configuration defined in the <filename>/etc/pam.d/common-auth</filename>, <filename>/etc/pam.d/common-password</filename> and <filename>/etc/pam.d/common-account</filename> files. This mechanism uses the dedicated <command>pam-auth-update</command> tool (provided by the <emphasis role=\"pkg\">libpam-runtime</emphasis> package). This tool can also be run by the administrator should they wish to enable or disable PAM modules."
msgstr "Memasang <emphasis role=\"pkg\">libpam-ldap</emphasis> secara otomatis mengadaptasi konfigurasi PAM default yang didefinisikan dalam berkas <filename>/etc/pam.d/common-auth</filename>, <filename>/etc/pam.d/common-password</filename>, dan <filename>/etc/pam.d/common-account</filename>. Mekanisme ini menggunakan alat khusus <command>pam-auth-update</command> (yang disediakan oleh paket <emphasis role=\"pkg\">libpam-runtime</emphasis>). Alat ini juga dapat dijalankan oleh administrator jika mereka ingin mengaktifkan atau menonaktifkan modul PAM."

msgid "<primary><filename>common-auth</filename></primary>"
msgstr "<primary><filename>common-auth</filename></primary>"

msgid "<primary><filename>/etc/pam.d/common-auth</filename></primary>"
msgstr "<primary><filename>/etc/pam.d/common-auth</filename></primary>"

msgid "<primary><filename>common-password</filename></primary>"
msgstr "<primary><filename>common-password</filename></primary>"

msgid "<primary><filename>/etc/pam.d/common-password</filename></primary>"
msgstr "<primary><filename>/etc/pam.d/common-password</filename></primary>"

msgid "<primary><filename>common-account</filename></primary>"
msgstr "<primary><filename>common-account</filename></primary>"

msgid "<primary><filename>/etc/pam.d/common-account</filename></primary>"
msgstr "<primary><filename>/etc/pam.d/common-account</filename></primary>"

msgid "Securing LDAP Data Exchanges"
msgstr "Mengamankan Pertukaran Data LDAP"

msgid "<primary>LDAP</primary><secondary>secure</secondary>"
msgstr "<primary>LDAP</primary><secondary>aman</secondary>"

msgid "By default, the LDAP protocol transits on the network as cleartext; this includes the (encrypted) passwords. Since the encrypted passwords can be extracted from the network, they can be vulnerable to dictionary-type attacks. This can be avoided by using an extra encryption layer; enabling this layer is the topic of this section."
msgstr "Secara default, protokol LDAP transit pada jaringan sebagai teks polos; ini termasuk kata sandi (yang dienkripsi). Karena kata sandi terenkripsi dapat diekstrak dari jaringan, mereka dapat rentan terhadap serangan bertipe dictionary-attack. Ini dapat dihindari dengan menggunakan lapisan tambahan enkripsi; memfungsikan lapisan ini adalah topik bagian ini."

msgid "Configuring the Server"
msgstr "Menata Server"

msgid "<primary><foreignphrase>OpenSSL</foreignphrase></primary><secondary>creating keys</secondary>"
msgstr "<primary><foreignphrase>OpenSSL</foreignphrase></primary><secondary>membuat kunci</secondary>"

msgid "<primary>key pair</primary>"
msgstr "<primary>pasangan kunci</primary>"

#, fuzzy
#| msgid "The first step is to create a key pair (comprising a public key and a private key) for the LDAP server. The Falcot administrators reuse <emphasis>easy-rsa</emphasis> to generate it (see <xref linkend=\"sect.easy-rsa\" />). Running <command>./build-key-server ldap.falcot.com</command> asks a few mundane questions (location, organization name and so on). The answer to the “common name” question <emphasis>must</emphasis> be the fully-qualified hostname for the LDAP server; in our case, <literal>ldap.falcot.com</literal>."
msgid "The first step is to create a key pair (comprising a public key and a private key) for the LDAP server. The Falcot administrators reuse <emphasis>easy-rsa</emphasis> to generate it (see <xref linkend=\"sect.easy-rsa\" />). Running <command>./easyrsa build-server-full ldap.falcot.com nopass</command> will ask you about the “common name”. The answer to that question <emphasis>must</emphasis> be the fully-qualified hostname for the LDAP server; in our case, <literal>ldap.falcot.com</literal>."
msgstr "Langkah pertama adalah untuk membuat pasangan kunci (terdiri dari kunci publik dan kunci privat) untuk server LDAP. Para administrator Falcot kembali memakai <emphasis>easy-rsa</emphasis> untuk menghasilkan ini (lihat <xref linkend=\"sect.easy-rsa\" />). Menjalankan <command>. /build-key-server ldap.falcot.com</command> mengajukan beberapa pertanyaan biasa (lokasi, nama organisasi, dan seterusnya). Jawaban untuk pertanyaan \"common name\" <emphasis>harus</emphasis> berupa fully-qualified hostname untuk server LDAP; dalam kasus kami, <literal>ldap.falcot.com</literal>."

#, fuzzy
#| msgid "This command creates a certificate in the <filename>keys/ldap.falcot.com.crt</filename> file; the corresponding private key is stored in <filename>keys/ldap.falcot.com.key</filename>."
msgid "This command creates a certificate in the <filename>pki/issued/ldap.falcot.com.crt</filename> file; the corresponding private key is stored in <filename>pki/private/ldap.falcot.com.key</filename>."
msgstr "Perintah ini akan membuat sertifikat dalam berkas <filename>keys/ldap.falcot.com.crt</filename>; kunci privat disimpan dalam <filename>keys/ldap.falcot.com.key</filename>."

msgid "Now these keys have to be installed in their standard location, and we must make sure that the private file is readable by the LDAP server which runs under the <literal>openldap</literal> user identity:"
msgstr "Sekarang kunci ini harus dipasang di lokasi standar mereka, dan kita harus memastikan bahwa berkasi pribadi tersebut dapat dibaca oleh server LDAP yang berjalan di bawah identitas pengguna <literal>openldap</literal>:"

#, fuzzy
#| msgid ""
#| "<computeroutput># </computeroutput><userinput>adduser openldap ssl-cert\n"
#| "</userinput><computeroutput>Adding user `openldap' to group `ssl-cert' ...\n"
#| "Adding user openldap to group ssl-cert\n"
#| "Done.\n"
#| "# </computeroutput><userinput>mv keys/ldap.falcot.com.key /etc/ssl/private/ldap.falcot.com.key\n"
#| "</userinput><computeroutput># </computeroutput><userinput>chown root:ssl-cert /etc/ssl/private/ldap.falcot.com.key\n"
#| "</userinput><computeroutput># </computeroutput><userinput>chmod 0640 /etc/ssl/private/ldap.falcot.com.key\n"
#| "</userinput><computeroutput># </computeroutput><userinput>mv newcert.pem /etc/ssl/certs/ldap.falcot.com.pem\n"
#| "</userinput>"
msgid ""
"<computeroutput># </computeroutput><userinput>adduser openldap ssl-cert\n"
"</userinput><computeroutput>Adding user `openldap' to group `ssl-cert' ...\n"
"Adding user openldap to group ssl-cert\n"
"Done.\n"
"# </computeroutput><userinput>mv pki/private/ldap.falcot.com.key /etc/ssl/private/ldap.falcot.com.key\n"
"</userinput><computeroutput># </computeroutput><userinput>chown root:ssl-cert /etc/ssl/private/ldap.falcot.com.key\n"
"</userinput><computeroutput># </computeroutput><userinput>chmod 0640 /etc/ssl/private/ldap.falcot.com.key\n"
"</userinput><computeroutput># </computeroutput><userinput>./eassyrsa gen-dh\n"
"</userinput><computeroutput>\n"
"Note: using Easy-RSA configuration from: ./vars\n"
"\n"
"Using SSL: openssl OpenSSL 1.1.1c  28 May 2019\n"
"Generating DH parameters, 2048 bit long safe prime, generator 2\n"
"This is going to take a long time\n"
"........................................................+..........................................................................+...............................................................................+............\n"
"[...]\n"
"DH parameters of size 2048 created at /home/roland/pki/dh.pem\n"
"\n"
"# </computeroutput><userinput>mv pki/dh.pem /etc/ssl/certs/ldap.falcot.com.pem\n"
"</userinput>"
msgstr ""
"<computeroutput># </computeroutput><userinput>adduser openldap ssl-cert\n"
"</userinput><computeroutput>Adding user `openldap' to group `ssl-cert' ...\n"
"Adding user openldap to group ssl-cert\n"
"Done.\n"
"# </computeroutput><userinput>mv keys/ldap.falcot.com.key /etc/ssl/private/ldap.falcot.com.key\n"
"</userinput><computeroutput># </computeroutput><userinput>chown root:ssl-cert /etc/ssl/private/ldap.falcot.com.key\n"
"</userinput><computeroutput># </computeroutput><userinput>chmod 0640 /etc/ssl/private/ldap.falcot.com.key\n"
"</userinput><computeroutput># </computeroutput><userinput>mv newcert.pem /etc/ssl/certs/ldap.falcot.com.pem\n"
"</userinput>"

msgid "The <command>slapd</command> daemon also needs to be told to use these keys for encryption. The LDAP server configuration is managed dynamically: the configuration can be updated with normal LDAP operations on the <literal>cn=config</literal> object hierarchy, and the server updates <filename>/etc/ldap/slapd.d</filename> in real time to make the configuration persistent. <command>ldapmodify</command> is thus the right tool to update the configuration:"
msgstr "Daemon <command>slapd</command> juga perlu diberitahu untuk menggunakan kunci-kunci ini untuk enkripsi. Konfigurasi server LDAP dikelola secara dinamis: konfigurasi dapat diperbarui dengan operasi LDAP normal pada hirarki objek <literal>cn=config</literal>, dan server memperbarui <filename>/etc/ldap/slapd.d</filename> secara real time untuk membuat konfigurasi persisten. <command>ldapmodify</command> adalah alat yang tepat untuk memperbarui konfigurasi:"

msgid "Configuring <command>slapd</command> for encryption"
msgstr "Mengkonfigurasi <command>slapd</command> untuk enkripsi"

msgid ""
"<computeroutput># </computeroutput><userinput>cat &gt;ssl.ldif &lt;&lt;END\n"
"dn: cn=config\n"
"changetype: modify\n"
"add: olcTLSCertificateFile\n"
"olcTLSCertificateFile: /etc/ssl/certs/ldap.falcot.com.pem\n"
"-\n"
"add: olcTLSCertificateKeyFile\n"
"olcTLSCertificateKeyFile: /etc/ssl/private/ldap.falcot.com.key\n"
"-\n"
"END\n"
"</userinput><computeroutput># </computeroutput><userinput>ldapmodify -Y EXTERNAL -H ldapi:/// -f ssl.ldif\n"
"</userinput><computeroutput>SASL/EXTERNAL authentication started\n"
"SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth\n"
"SASL SSF: 0\n"
"modifying entry \"cn=config\"\n"
"</computeroutput>"
msgstr ""
"<computeroutput># </computeroutput><userinput>cat &gt;ssl.ldif &lt;&lt;END\n"
"dn: cn=config\n"
"changetype: modify\n"
"add: olcTLSCertificateFile\n"
"olcTLSCertificateFile: /etc/ssl/certs/ldap.falcot.com.pem\n"
"-\n"
"add: olcTLSCertificateKeyFile\n"
"olcTLSCertificateKeyFile: /etc/ssl/private/ldap.falcot.com.key\n"
"-\n"
"END\n"
"</userinput><computeroutput># </computeroutput><userinput>ldapmodify -Y EXTERNAL -H ldapi:/// -f ssl.ldif\n"
"</userinput><computeroutput>SASL/EXTERNAL authentication started\n"
"SASL username: gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth\n"
"SASL SSF: 0\n"
"modifying entry \"cn=config\"\n"
"</computeroutput>"

msgid "<emphasis>TOOL</emphasis> <command>ldapvi</command> to edit an LDAP directory"
msgstr "<emphasis>ALAT</emphasis> <command>ldapvi</command> untuk menyunting direktori LDAP"

msgid "<primary><command>ldapvi</command></primary>"
msgstr "<primary><command>ldapvi</command></primary>"

msgid "With <command>ldapvi</command>, you can display an LDIF output of any part of the LDAP directory, make some changes in the text editor, and let the tool do the corresponding LDAP operations for you."
msgstr "Dengan <command>ldapvi</command>, Anda dapat menampilkan keluaran LDIF dari bagian manapun dari direktori LDAP, membuat beberapa perubahan dalam penyunting teks, dan membiarkan alat melakukan operasi LDAP yang sesuai untuk Anda."

msgid "It is thus a convenient way to update the configuration of the LDAP server, simply by editing the <literal>cn=config</literal> hierarchy."
msgstr "Jadi itu adalah cara mudah untuk memperbarui konfigurasi server LDAP, cukup dengan menyunting hirarki <literal>cn=config</literal>."

msgid ""
"<computeroutput># </computeroutput><userinput>ldapvi -Y EXTERNAL -h ldapi:/// -b cn=config\n"
"</userinput>"
msgstr ""
"<computeroutput># </computeroutput><userinput>ldapvi -Y EXTERNAL -h ldapi:/// -b cn=config\n"
"</userinput>"

msgid "The last step for enabling encryption involves changing the <varname>SLAPD_SERVICES</varname> variable in the <filename>/etc/default/slapd</filename> file. We'll play it safe and disable unsecured LDAP altogether."
msgstr "Langkah terakhir untuk memfungsikan enkripsi adalah mengubah variabel <varname>SLAPD_SERVICES</varname> di berkas <filename>/etc/default/slapd</filename>. Kami akan bermain aman dan menonaktifkan LDAP tidak aman sama sekali."

msgid "The <filename>/etc/default/slapd</filename> file"
msgstr "Berkas <filename>/etc/default/slapd</filename>"

#, fuzzy
#| msgid ""
#| "\n"
#| "# Default location of the slapd.conf file or slapd.d cn=config directory. If\n"
#| "# empty, use the compiled-in default (/etc/ldap/slapd.d with a fallback to\n"
#| "# /etc/ldap/slapd.conf).\n"
#| "SLAPD_CONF=\n"
#| "\n"
#| "# System account to run the slapd server under. If empty the server\n"
#| "# will run as root.\n"
#| "SLAPD_USER=\"openldap\"\n"
#| "\n"
#| "# System group to run the slapd server under. If empty the server will\n"
#| "# run in the primary group of its user.\n"
#| "SLAPD_GROUP=\"openldap\"\n"
#| "\n"
#| "# Path to the pid file of the slapd server. If not set the init.d script\n"
#| "# will try to figure it out from $SLAPD_CONF (/etc/ldap/slapd.conf by\n"
#| "# default)\n"
#| "SLAPD_PIDFILE=\n"
#| "\n"
#| "# slapd normally serves ldap only on all TCP-ports 389. slapd can also\n"
#| "# service requests on TCP-port 636 (ldaps) and requests via unix\n"
#| "# sockets.\n"
#| "# Example usage:\n"
#| "# SLAPD_SERVICES=\"ldap://127.0.0.1:389/ ldaps:/// ldapi:///\"\n"
#| "SLAPD_SERVICES=\"ldaps:/// ldapi:///\"\n"
#| "\n"
#| "# If SLAPD_NO_START is set, the init script will not start or restart\n"
#| "# slapd (but stop will still work).  Uncomment this if you are\n"
#| "# starting slapd via some other means or if you don't want slapd normally\n"
#| "# started at boot.\n"
#| "#SLAPD_NO_START=1\n"
#| "\n"
#| "# If SLAPD_SENTINEL_FILE is set to path to a file and that file exists,\n"
#| "# the init script will not start or restart slapd (but stop will still\n"
#| "# work).  Use this for temporarily disabling startup of slapd (when doing\n"
#| "# maintenance, for example, or through a configuration management system)\n"
#| "# when you don't want to edit a configuration file.\n"
#| "SLAPD_SENTINEL_FILE=/etc/ldap/noslapd\n"
#| "\n"
#| "# For Kerberos authentication (via SASL), slapd by default uses the system\n"
#| "# keytab file (/etc/krb5.keytab).  To use a different keytab file,\n"
#| "# uncomment this line and change the path.\n"
#| "#export KRB5_KTNAME=/etc/krb5.keytab\n"
#| "\n"
#| "# Additional options to pass to slapd\n"
#| "SLAPD_OPTIONS=\"\""
msgid ""
"\n"
"# Default location of the slapd.conf file or slapd.d cn=config directory. If\n"
"# empty, use the compiled-in default (/etc/ldap/slapd.d with a fallback to\n"
"# /etc/ldap/slapd.conf).\n"
"SLAPD_CONF=\n"
"\n"
"# System account to run the slapd server under. If empty the server\n"
"# will run as root.\n"
"SLAPD_USER=\"openldap\"\n"
"\n"
"# System group to run the slapd server under. If empty the server will\n"
"# run in the primary group of its user.\n"
"SLAPD_GROUP=\"openldap\"\n"
"\n"
"# Path to the pid file of the slapd server. If not set the init.d script\n"
"# will try to figure it out from $SLAPD_CONF (/etc/ldap/slapd.conf by\n"
"# default)\n"
"SLAPD_PIDFILE=\n"
"\n"
"# slapd normally serves ldap only on all TCP-ports 389. slapd can also\n"
"# service requests on TCP-port 636 (ldaps) and requests via unix\n"
"# sockets.\n"
"# Example usage:\n"
"# SLAPD_SERVICES=\"ldap://127.0.0.1:389/ ldaps:/// ldapi:///\"\n"
"SLAPD_SERVICES=\"ldaps:/// ldapi:///\"\n"
"\n"
"# If SLAPD_NO_START is set, the init script will not start or restart\n"
"# slapd (but stop will still work).  Uncomment this if you are\n"
"# starting slapd via some other means or if you don't want slapd normally\n"
"# started at boot.\n"
"#SLAPD_NO_START=1\n"
"\n"
"# If SLAPD_SENTINEL_FILE is set to path to a file and that file exists,\n"
"# the init script will not start or restart slapd (but stop will still\n"
"# work).  Use this for temporarily disabling startup of slapd (when doing\n"
"# maintenance, for example, or through a configuration management system)\n"
"# when you don't want to edit a configuration file.\n"
"SLAPD_SENTINEL_FILE=/etc/ldap/noslapd\n"
"\n"
"# For Kerberos authentication (via SASL), slapd by default uses the system\n"
"# keytab file (/etc/krb5.keytab).  To use a different keytab file,\n"
"# uncomment this line and change the path.\n"
"#export KRB5_KTNAME=/etc/krb5.keytab\n"
"\n"
"# Additional options to pass to slapd\n"
"SLAPD_OPTIONS=\"\"\n"
msgstr ""
"\n"
"# Default location of the slapd.conf file or slapd.d cn=config directory. If\n"
"# empty, use the compiled-in default (/etc/ldap/slapd.d with a fallback to\n"
"# /etc/ldap/slapd.conf).\n"
"SLAPD_CONF=\n"
"\n"
"# System account to run the slapd server under. If empty the server\n"
"# will run as root.\n"
"SLAPD_USER=\"openldap\"\n"
"\n"
"# System group to run the slapd server under. If empty the server will\n"
"# run in the primary group of its user.\n"
"SLAPD_GROUP=\"openldap\"\n"
"\n"
"# Path to the pid file of the slapd server. If not set the init.d script\n"
"# will try to figure it out from $SLAPD_CONF (/etc/ldap/slapd.conf by\n"
"# default)\n"
"SLAPD_PIDFILE=\n"
"\n"
"# slapd normally serves ldap only on all TCP-ports 389. slapd can also\n"
"# service requests on TCP-port 636 (ldaps) and requests via unix\n"
"# sockets.\n"
"# Example usage:\n"
"# SLAPD_SERVICES=\"ldap://127.0.0.1:389/ ldaps:/// ldapi:///\"\n"
"SLAPD_SERVICES=\"ldaps:/// ldapi:///\"\n"
"\n"
"# If SLAPD_NO_START is set, the init script will not start or restart\n"
"# slapd (but stop will still work).  Uncomment this if you are\n"
"# starting slapd via some other means or if you don't want slapd normally\n"
"# started at boot.\n"
"#SLAPD_NO_START=1\n"
"\n"
"# If SLAPD_SENTINEL_FILE is set to path to a file and that file exists,\n"
"# the init script will not start or restart slapd (but stop will still\n"
"# work).  Use this for temporarily disabling startup of slapd (when doing\n"
"# maintenance, for example, or through a configuration management system)\n"
"# when you don't want to edit a configuration file.\n"
"SLAPD_SENTINEL_FILE=/etc/ldap/noslapd\n"
"\n"
"# For Kerberos authentication (via SASL), slapd by default uses the system\n"
"# keytab file (/etc/krb5.keytab).  To use a different keytab file,\n"
"# uncomment this line and change the path.\n"
"#export KRB5_KTNAME=/etc/krb5.keytab\n"
"\n"
"# Opsi tambahan yang diangsurkan ke slapd\n"
"SLAPD_OPTIONS=\"\""

msgid "Configuring the Client"
msgstr "Mengkonfigurasi Klien"

msgid "On the client side, the configuration for the <emphasis>libpam-ldap</emphasis> and <emphasis>libnss-ldap</emphasis> modules needs to be modified to use an <literal>ldaps://</literal> URI."
msgstr "Pada sisi klien, konfigurasi untuk modul <emphasis>libpam-ldap</emphasis> dan <emphasis>libnss-ldap</emphasis> perlu dimodifikasi untuk menggunakan URI <literal>ldaps://</literal>."

msgid "LDAP clients also need to be able to authenticate the server. In a X.509 public key infrastructure, public certificates are signed by the key of a certificate authority (CA). With <emphasis>easy-rsa</emphasis>, the Falcot administrators have created their own CA and they now need to configure the system to trust the signatures of Falcot's CA. This can be done by putting the CA certificate in <filename>/usr/local/share/ca-certificates</filename> and running <command>update-ca-certificates</command>."
msgstr "Klien LDAP juga harus bisa mengotentikasi server. Di infrastuktur kunci publik X.509, sertifikat pubilk ditandatangani dengan kunci dari certificate authority (CA). Dengan <emphasis>easy-rsa</emphasis>, para administrator Falcot telah menciptakan CA mereka sendiri dan mereka sekarang perlu mengkonfigurasi sistem untuk mempercayai tanda tangan Falcot di CA. Ini dapat dilakukan dengan menempatkan sertifikat CA di <filename>/usr/local/share/ca-certificates</filename> dan menjalankan <command>update-ca-certificates</command>."

#, fuzzy
#| msgid ""
#| "<computeroutput># </computeroutput><userinput>cp keys/ca.crt /usr/local/share/ca-certificates/falcot.crt\n"
#| "</userinput><computeroutput># </computeroutput><userinput>update-ca-certificates\n"
#| "</userinput><computeroutput>Updating certificates in /etc/ssl/certs... 1 added, 0 removed; done.\n"
#| "Running hooks in /etc/ca-certificates/update.d....\n"
#| "Adding debian:falcot.pem\n"
#| "done.\n"
#| "done.\n"
#| "</computeroutput>"
msgid ""
"<computeroutput># </computeroutput><userinput>cp pki/ca.crt /usr/local/share/ca-certificates/falcot.crt\n"
"</userinput><computeroutput># </computeroutput><userinput>update-ca-certificates\n"
"</userinput><computeroutput>Updating certificates in /etc/ssl/certs... 1 added, 0 removed; done.\n"
"Running hooks in /etc/ca-certificates/update.d....\n"
"\n"
"Adding debian:falcot.pem\n"
"done.\n"
"done.\n"
"</computeroutput>"
msgstr ""
"<computeroutput># </computeroutput><userinput>cp keys/ca.crt /usr/local/share/ca-certificates/falcot.crt\n"
"</userinput><computeroutput># </computeroutput><userinput>update-ca-certificates\n"
"</userinput><computeroutput>Updating certificates in /etc/ssl/certs... 1 added, 0 removed; done.\n"
"Running hooks in /etc/ca-certificates/update.d....\n"
"Adding debian:falcot.pem\n"
"done.\n"
"done.\n"
"</computeroutput>"

msgid "Last but not least, the default LDAP URI and default base DN used by the various command line tools can be modified in <filename>/etc/ldap/ldap.conf</filename>. This will save quite some typing."
msgstr "Terakhir sama pentingnya, URI LDAP default dan base DN default yang digunakan oleh berbagai alat baris perintah dapat dimodifikasi dalam <filename>/etc/ldap/ldap.conf</filename>. Ini akan banyak menghemat pengetikan."

msgid "The <filename>/etc/ldap/ldap.conf</filename> file"
msgstr "Berkas <filename>/etc/ldap/ldap.conf</filename>"

msgid ""
"#\n"
"# LDAP Defaults\n"
"#\n"
"\n"
"# See ldap.conf(5) for details\n"
"# This file should be world readable but not world writable.\n"
"\n"
"BASE   dc=falcot,dc=com\n"
"URI    ldaps://ldap.falcot.com\n"
"\n"
"#SIZELIMIT      12\n"
"#TIMELIMIT      15\n"
"#DEREF          never\n"
"\n"
"# TLS certificates (needed for GnuTLS)\n"
"TLS_CACERT      /etc/ssl/certs/ca-certificates.crt"
msgstr ""
"#\n"
"#  Default LDAP\n"
"#\n"
"\n"
"# Lihat ldap.conf(5) untuk rincian\n"
"# Berkas ini mesti dapat dibaca oleh siapapun tapi tidak dapat ditulisi oleh semua orang.\n"
"\n"
"BASE   dc=falcot,dc=com\n"
"URI    ldaps://ldap.falcot.com\n"
"\n"
"#SIZELIMIT      12\n"
"#TIMELIMIT      15\n"
"#DEREF          never\n"
"\n"
"# sertifikat TLS (diperlukan untuk GnuTLS)\n"
"TLS_CACERT      /etc/ssl/certs/ca-certificates.crt"

msgid "Real-Time Communication Services"
msgstr "Layanan Komunikasi Real-Time"

#, fuzzy
#| msgid "Real-Time Communication (RTC) services include voice, video/webcam, instant messaging (IM) and desktop sharing. This chapter gives a brief introduction to three of the services required to operate RTC, including a TURN server, SIP server and XMPP server. Comprehensive details of how to plan, install and manage these services are available in the Real-Time Communications Quick Start Guide which includes examples specific to Debian. <ulink type=\"block\" url=\"http://rtcquickstart.org\" />"
msgid "Real-Time Communication (RTC) services include voice, video/webcam, instant messaging (IM) and desktop sharing. This chapter gives a brief introduction to three of the services required to operate RTC, including a TURN server, SIP server and XMPP server. Comprehensive details of how to plan, install and manage these services are available in the Real-Time Communications Quick Start Guide which includes examples specific to Debian. <ulink type=\"block\" url=\"https://rtcquickstart.org\" />"
msgstr "Layanan Real-Time komunikasi (RTC) meliputi suara, video/webcam, pesan instan (IM), dan berbagi pakai desktop. Bab ini memberikan pengantar singkat tiga layanan yang diperlukan untuk mengoperasikan RTC, termasuk server TURN, server SIP, dan server XMPP. Rincian komprehensif tentang bagaimana untuk merencanakan, memasang, dan mengelola layanan ini tersedia dalam  Panduan Ringkas Komunikasi Real-Time termasuk contoh spesifik untuk Debian. <ulink type=\"block\" url=\"http://rtcquickstart.org\" />"

msgid "<primary>VoIP</primary><secondary>server</secondary>"
msgstr "<primary>VoIP</primary><secondary>server</secondary>"

msgid "<primary>RTC</primary><secondary>server</secondary>"
msgstr "<primary>RTC</primary><secondary>server</secondary>"

msgid "<primary>Instant Messaging</primary><secondary>server</secondary>"
msgstr "<primary>Pesan Instan</primary><secondary>server</secondary>"

msgid "<primary>Chat</primary><secondary>server</secondary>"
msgstr "<primary>Chat</primary><secondary>server</secondary>"

msgid "Both SIP and XMPP can provide the same functionality. SIP is slightly more well known for voice and video while XMPP is traditionally regarded as an IM protocol. In fact, they can both be used for any of these purposes. To maximize connectivity options, it is recommended to run both in parallel."
msgstr "SIP dan XMPP dapat menyediakan fungsionalitas yang sama. SIP sedikit lebih dikenal untuk suara dan video sementara XMPP secara tradisional dianggap sebagai protokol IM. Pada kenyataannya, keduanya dapat digunakan untuk tujuan ini. Untuk memaksimalkan pilihan konektivitas, disarankan untuk menjalankan keduanya secara paralel."

msgid "<primary>SIP</primary>"
msgstr "<primary>SIP</primary>"

msgid "<primary>XMPP</primary>"
msgstr "<primary>XMPP</primary>"

msgid "These services rely on X.509 certificates both for authentication and confidentiality purposes. See <xref linkend=\"sect.x509-cert\" /> for more information."
msgstr ""

msgid "DNS settings for RTC services"
msgstr "Pengaturan DNS untuk layanan RTC"

msgid "RTC services require DNS SRV and NAPTR records. A sample configuration that can be placed in the zone file for <literal>falcot.com</literal>:"
msgstr "Layanan RTC memerlukan record DNS SRV dan NAPTR. Suatu contoh konfigurasi yang dapat ditempatkan dalam berkas zona untuk <literal>falcot.com</literal>:"

msgid "<primary>DNS</primary><secondary>SRV record</secondary>"
msgstr "<primary>DNS</primary><secondary>record SRV</secondary>"

msgid "<primary>DNS</primary><secondary>NAPTR record</secondary>"
msgstr "<primary>DNS</primary><secondary>record NAPTR</secondary>"

msgid ""
"\n"
"; the server where everything will run\n"
"server1            IN     A      198.51.100.19\n"
"server1            IN     AAAA   2001:DB8:1000:2000::19\n"
"\n"
"; IPv4 only for TURN for now, some clients are buggy with IPv6\n"
"turn-server        IN     A      198.51.100.19\n"
"\n"
"; IPv4 and IPv6 addresses for SIP\n"
"sip-proxy          IN     A      198.51.100.19\n"
"sip-proxy          IN     AAAA   2001:DB8:1000:2000::19\n"
"\n"
"; IPv4 and IPv6 addresses for XMPP\n"
"xmpp-gw            IN     A      198.51.100.19\n"
"xmpp-gw            IN     AAAA   2001:DB8:1000:2000::19\n"
"\n"
"; DNS SRV and NAPTR for STUN / TURN\n"
"_stun._udp  IN SRV    0 1 3467 turn-server.falcot.com.\n"
"_turn._udp  IN SRV    0 1 3467 turn-server.falcot.com.\n"
"@           IN NAPTR  10 0 \"s\" \"RELAY:turn.udp\" \"\" _turn._udp.falcot.com.\n"
"\n"
"; DNS SRV and NAPTR records for SIP\n"
"_sips._tcp  IN SRV    0 1 5061 sip-proxy.falcot.com.\n"
"@           IN NAPTR  10 0 \"s\" \"SIPS+D2T\" \"\" _sips._tcp.falcot.com.\n"
"\n"
"; DNS SRV records for XMPP Server and Client modes:\n"
"_xmpp-client._tcp  IN     SRV    5 0 5222 xmpp-gw.falcot.com.\n"
"_xmpp-server._tcp  IN     SRV    5 0 5269 xmpp-gw.falcot.com."
msgstr ""
"\n"
"; server tempat semua akan dijalankan\n"
"server1            IN     A      198.51.100.19\n"
"server1            IN     AAAA   2001:DB8:1000:2000::19\n"
"\n"
"; IPv4 only for TURN for now, some clients are buggy with IPv6\n"
"turn-server        IN     A      198.51.100.19\n"
"\n"
"; IPv4 and IPv6 addresses for SIP\n"
"sip-proxy          IN     A      198.51.100.19\n"
"sip-proxy          IN     AAAA   2001:DB8:1000:2000::19\n"
"\n"
"; IPv4 and IPv6 addresses for XMPP\n"
"xmpp-gw            IN     A      198.51.100.19\n"
"xmpp-gw            IN     AAAA   2001:DB8:1000:2000::19\n"
"\n"
"; DNS SRV and NAPTR for STUN / TURN\n"
"_stun._udp  IN SRV    0 1 3467 turn-server.falcot.com.\n"
"_turn._udp  IN SRV    0 1 3467 turn-server.falcot.com.\n"
"@           IN NAPTR  10 0 \"s\" \"RELAY:turn.udp\" \"\" _turn._udp.falcot.com.\n"
"\n"
"; DNS SRV and NAPTR records for SIP\n"
"_sips._tcp  IN SRV    0 1 5061 sip-proxy.falcot.com.\n"
"@           IN NAPTR  10 0 \"s\" \"SIPS+D2T\" \"\" _sips._tcp.falcot.com.\n"
"\n"
"; DNS SRV records for XMPP Server and Client modes:\n"
"_xmpp-client._tcp  IN     SRV    5 0 5222 xmpp-gw.falcot.com.\n"
"_xmpp-server._tcp  IN     SRV    5 0 5269 xmpp-gw.falcot.com."

msgid "TURN Server"
msgstr "Server TURN"

msgid "TURN is a service that helps clients behind NAT routers and firewalls to discover the most efficient way to communicate with other clients and to relay the media streams if no direct media path can be found. It is highly recommended that the TURN server is installed before any of the other RTC services are offered to end users."
msgstr "TURN adalah layanan yang membantu klien di belakang firewall dan router NAT untuk menemukan cara yang paling efisien untuk berkomunikasi dengan klien lain dan me-relay stream media jika tidak ditemukan path media yang langsung. Sangat dianjurkan untuk memasang server TURN sebelum salah satu layanan RTC lain ditawarkan kepada pengguna akhir."

msgid "<primary>TURN</primary><secondary>server</secondary>"
msgstr "<primary>TURN</primary><secondary>server</secondary>"

msgid "TURN and the related ICE protocol are open standards. To benefit from these protocols, maximizing connectivity and minimizing user frustration, it is important to ensure that all client software supports ICE and TURN."
msgstr "TURN dan protokol ICE yang terkait adalah standar terbuka. Untuk memperoleh manfaat dari protokol-protokol ini, memaksimalkan konektivitas dan meminimalkan frustrasi, itu penting untuk memastikan bahwa semua perangkat lunak klien mendukung ICE dan TURN."

msgid "<primary>ICE</primary>"
msgstr "<primary>ICE</primary>"

msgid "For the ICE algorithm to work effectively, the server must have two public IPv4 addresses."
msgstr "Agar algoritma ICE bekerja secara efektif, server harus memiliki dua alamat IPv4 publik."

msgid "Install the <emphasis role=\"pkg\">coturn</emphasis> package and edit the <filename>/etc/turnserver.conf</filename> configuration file. By default, a SQLite database is configured in /var/db/turndb for user account settings, but PostgreSQL, MySQL or Redis can be set up instead if preferred. The most important thing to do is insert the IP addresses of the server."
msgstr ""

#, fuzzy
#| msgid "<primary>Postfix</primary>"
msgid "<primary>coturn</primary>"
msgstr "<primary>Postfix</primary>"

msgid "The server can be started running <command>/usr/bin/turnserver</command>. We want the server to be an an automatically started system service, so we edit the <filename>/etc/default/coturn</filename> file like this:"
msgstr ""

msgid ""
"\n"
"#\n"
"# Uncomment it if you want to have the turnserver running as\n"
"# an automatic system service daemon\n"
"#\n"
"TURNSERVER_ENABLED=1"
msgstr ""

msgid "By default, the TURN server uses anonymous access. We have to add the users we want to use:"
msgstr ""

#, fuzzy
#| msgid ""
#| "\n"
#| "<computeroutput># </computeroutput><userinput>htpasswd /etc/apache2/authfiles/htpasswd-private <replaceable>user</replaceable>\n"
#| "</userinput><computeroutput>New password:\n"
#| "Re-type new password:\n"
#| "Adding password for user <replaceable>user</replaceable>\n"
#| "</computeroutput>"
msgid ""
"<computeroutput># </computeroutput><userinput>turnadmin -a -u roland -p <replaceable>secret_password</replaceable> -r falcot.com</userinput>\n"
"<computeroutput># </computeroutput><userinput>turnadmin -A -u admin -p <replaceable>secret_password</replaceable></userinput>"
msgstr ""
"\n"
"<computeroutput># </computeroutput><userinput>htpasswd /etc/apache2/authfiles/htpasswd-private <replaceable>user</replaceable>\n"
"</userinput><computeroutput>New password:\n"
"Re-type new password:\n"
"Adding password for user <replaceable>user</replaceable>\n"
"</computeroutput>"

msgid "We use the argument <literal>-a</literal> to add a normal user and <literal>-A</literal> to add an admin user."
msgstr ""

msgid "SIP Proxy Server"
msgstr "Server Proksi SIP"

msgid "A SIP proxy server manages the incoming and outgoing SIP connections between other organizations, SIP trunking providers, SIP PBXes such as Asterisk, SIP phones, SIP-based softphones and WebRTC applications."
msgstr "Server proksi SIP mengelola koneksi SIP masuk dan keluar antara organisasi, penyedia trunking SIP, PBX SIP seperti Asterisk, telepon SIP, softphones berbasis SIP, dan aplikasi WebRTC."

msgid "<primary>SIP</primary><secondary>server</secondary>"
msgstr "<primary>SIP</primary><secondary>server</secondary>"

msgid "<primary>SIP</primary><secondary>proxy</secondary>"
msgstr "<primary>SIP</primary> <secondary>proksi</secondary>"

msgid "<primary>SIP</primary><secondary>PBX</secondary>"
msgstr "<primary>SIP</primary><secondary>PBX</secondary>"

msgid "<primary>SIP</primary><secondary>trunk</secondary>"
msgstr "<primary>SIP</primary><secondary>trunk</secondary>"

msgid "It is strongly recommended to install and configure the SIP proxy before attempting a SIP PBX setup. The SIP proxy normalizes a lot of the traffic reaching the PBX and provides greater connectivity and resilience."
msgstr "Sangat dianjurkan untuk memasang dan mengkonfigurasi proksi SIP sebelum mencoba konfigurasi PBX SIP. Proksi SIP menormalkan banyak lalu lintas yang mencapai PBX dan menyediakan konektivitas dan ketahanan yang lebih besar."

msgid "Install the SIP proxy"
msgstr "Memasang proksi SIP"

msgid "Install the <emphasis role=\"pkg\">kamailio</emphasis> package and the package for the database backend, the Falcot administrators chose MySQL, so they install <emphasis role=\"pkg\">mariadb-server</emphasis>. <filename>/etc/kamailio/kamctlrc</filename> is the configuration file for the control tools <command>kamctl</command> and <command>kamdbctl</command>. You need to edit and set the <literal>SIP_DOMAIN</literal> to your SIP service domain and set the <literal>DBENGINE</literal> to MySQL, another database backend can be used."
msgstr ""

msgid ""
"\n"
"[...]\n"
"## your SIP domain\n"
"SIP_DOMAIN=sip.falcot.com\n"
"\n"
"## chrooted directory\n"
"# $CHROOT_DIR=\"/path/to/chrooted/directory\"\n"
"\n"
"## database type: MYSQL, PGSQL, ORACLE, DB_BERKELEY, DBTEXT, or SQLITE\n"
"# by default none is loaded\n"
"#\n"
"# If you want to setup a database with kamdbctl, you must at least specify\n"
"# this parameter.\n"
"DBENGINE=MYSQL\n"
"[...]"
msgstr ""

#, fuzzy
#| msgid "<primary>Samba</primary>"
msgid "<primary>Kamailio</primary>"
msgstr "<primary>Samba</primary>"

msgid "Now we focus on the configuration file <filename>/etc/kamailio/kamailio.cfg</filename>. Falcot needs user authentication and persistent user location, so they add the following <literal>#!define</literal> directives at the top of that file:"
msgstr ""

msgid ""
"\n"
"#!KAMAILIO\n"
"#\n"
"# Kamailio (OpenSER) SIP Server v5.2 - default configuration script\n"
"#     - web: https://www.kamailio.org\n"
"#     - git: https://github.com/kamailio/kamailio\n"
"#!define WITH_MYSQL\n"
"#!define WITH_AUTH\n"
"#!define WITH_USRLOCDB\n"
"[...]\n"
"        "
msgstr ""

msgid "Kamailio needs a database structure that we can create running <command>kamdbctl create</command> as root."
msgstr ""

msgid "Finally, we can add some users with <command>kamctl</command>."
msgstr ""

#, fuzzy
#| msgid "<computeroutput># </computeroutput><userinput>htdigest /etc/repro/users.txt repro admin</userinput>"
msgid "<computeroutput># </computeroutput><userinput>kamctl add <replaceable>roland</replaceable> <replaceable>secret_password</replaceable></userinput>"
msgstr "<computeroutput># </computeroutput><userinput>htdigest /etc/repro/users.txt repro admin</userinput>"

msgid "Once everything is properly configured you can start or restart the service with <command>systemctl restart kamailio</command>, you can connect with a SIP client providing the ip address and the port (5090 is the default port). The users have the following id: <literal><replaceable>roland</replaceable>@<replaceable>sip.falcot.com</replaceable></literal>, and they can login using a client (see <xref linkend=\"sect.rtc-clients\" />)"
msgstr ""

msgid "XMPP Server"
msgstr "Server XMPP"

msgid "An XMPP server manages connectivity between local XMPP users and XMPP users in other domains on the public Internet."
msgstr "Suatu server XMPP mengelola konektivitas antara pengguna XMPP lokal dan XMPP pengguna di domain lainnya di Internet."

msgid "<primary>XMPP</primary><secondary>server</secondary>"
msgstr "<primary>XMPP</primary><secondary>server</secondary>"

msgid "<emphasis>VOCABULARY</emphasis> XMPP or Jabber?"
msgstr "<emphasis>KOSAKATA</emphasis> XMPP atau Jabber?"

msgid "<primary>Jabber</primary>"
msgstr "<primary>Jabber</primary>"

msgid "XMPP is sometimes referred to as Jabber. In fact, Jabber is a trademark and XMPP is the official name of the standard."
msgstr "XMPP kadang-kadang disebut sebagai Jabber. Pada kenyataannya, Jabber adalah merek dagang dan XMPP adalah nama resmi standar."

msgid "Prosody is a popular XMPP server that operates reliably on Debian servers."
msgstr "Prosody adalah server XMPP populer yang beroperasi secara andal pada server Debian."

msgid "<primary>Prosody</primary>"
msgstr "<primary>Prosody</primary>"

msgid "Install the XMPP server"
msgstr "Pasang server XMPP"

#, fuzzy
#| msgid "Install the <emphasis role=\"pkg\">resiprocate-turn-server</emphasis> package."
msgid "Install the <emphasis role=\"pkg\">prosody</emphasis> package."
msgstr "Pasang paket <emphasis role=\"pkg\">reciprocate-turn-server</emphasis>."

msgid "Review the <filename>/etc/prosody/prosody.cfg.lua</filename> configuration file. The most important thing to do is insert JIDs of the users who are permitted to manage the server."
msgstr "Tinjau berkas konfigurasi <filename>/etc/prosody/prosody.cfg.lua</filename>. Yang paling penting untuk dilakukan adalah memasukkan JID pengguna yang diizinkan untuk mengelola server."

msgid ""
"\n"
"admins = { \"joe@falcot.com\" }"
msgstr ""
"\n"
"admins = { \"joe@falcot.com\" }"

msgid "An individual configuration file is also needed for each domain. Copy the sample from <filename>/etc/prosody/conf.avail/example.com.cfg.lua</filename> and use it as a starting point. Here is <literal>falcot.com.cfg.lua</literal>:"
msgstr "Berkas konfigurasi individu juga diperlukan untuk setiap domain. Salin contoh dari <filename>/etc/prosody/conf.avail/example.com.cfg.lua</filename> dan gunakan sebagai titik awal. Berikut adalah <literal>falcot.com.cfg.lua</literal>:"

#, fuzzy
#| msgid ""
#| "\n"
#| "VirtualHost \"falcot.com\"\n"
#| "        enabled = true\n"
#| "        ssl = {\n"
#| "                key = \"/etc/ssl/private/falcot.com-key.pem\";\n"
#| "                certificate = \"/etc/ssl/public/falcot.com.pem\";\n"
#| "                }"
msgid ""
"\n"
"VirtualHost \"falcot.com\"\n"
"        enabled = true\n"
"        ssl = {\n"
"                key = \"/etc/ssl/private/falcot.com-key.pem\";\n"
"                certificate = \"/etc/ssl/public/falcot.com.pem\";\n"
"                }\n"
"\n"
"-- Set up a MUC (multi-user chat) room server on conference.example.com:\n"
"Component \"conference.falcot.com\" \"muc\""
msgstr ""
"\n"
"VirtualHost \"falcot.com\"\n"
"        enabled = true\n"
"        ssl = {\n"
"                key = \"/etc/ssl/private/falcot.com-key.pem\";\n"
"                certificate = \"/etc/ssl/public/falcot.com.pem\";\n"
"                }"

msgid "To enable the domain, there must be a symlink from <filename>/etc/prosody/conf.d/</filename>. Create it that way:"
msgstr "Untuk mengaktifkan domain, harus ada symlink dari <filename>/etc/prosody/conf.d/</filename>. Buat dengan cara:"

msgid "<computeroutput># </computeroutput><userinput>ln -s /etc/prosody/conf.avail/falcot.com.cfg.lua /etc/prosody/conf.d/</userinput>"
msgstr "<computeroutput># </computeroutput><userinput>ln -s /etc/prosody/conf.avail/falcot.com.cfg.lua /etc/prosody/conf.d/</userinput>"

msgid "Restart the service to use the new configuration."
msgstr "Jalankan ulang layanan menggunakan konfigurasi baru."

msgid "Managing the XMPP server"
msgstr "Mengelola server XMPP"

msgid "Some management operations can be performed using the <literal>prosodyctl</literal> command line utility. For example, to add the administrator account specified in <filename>/etc/prosody/prosody.cfg.lua</filename>:"
msgstr "Beberapa operasi manajemen dapat dilakukan dengan menggunakan utilitas baris perintah <literal>prosodyctl</literal>. Misalnya, untuk menambahkan akun administrator yang ditentukan dalam <filename>/etc/prosody/prosody.cfg.lua</filename>:"

msgid ""
"\n"
"# prosodyctl adduser joe@falcot.com"
msgstr ""
"\n"
"# prosodyctl adduser joe@falcot.com"

#, fuzzy
#| msgid "See the <ulink url=\"http://prosody.im/doc/configure\"> Prosody online documentation</ulink> for more details about how to customize the configuration."
msgid "See the <ulink url=\"https://prosody.im/doc/configure\"> Prosody online documentation</ulink> for more details about how to customize the configuration."
msgstr "Lihat <ulink url=\"http://prosody.im/doc/configure\"> dokumentasi daring Prosody</ulink> untuk informasi lebih lanjut tentang cara menyesuaikan konfigurasi."

msgid "Running services on port 443"
msgstr "Menjalankan layanan pada port 443"

msgid "Some administrators prefer to run all of their RTC services on port 443. This helps users to connect from remote locations such as hotels and airports where other ports may be blocked or Internet traffic is routed through HTTP proxy servers."
msgstr "Beberapa administrator lebih suka untuk menjalankan semua layanan RTC mereka pada port 443. Ini membantu pengguna untuk menyambung dari lokasi terpencil seperti Hotel dan Bandara dimana port lain dapat diblokir atau lalu lintas Internet disalurkan melalui server proksi HTTP."

msgid "To use this strategy, each service (SIP, XMPP and TURN) needs a different IP address. All the services can still be on the same host as Linux supports multiple IP addresses on a single host. The port number, 443, must be specified in the configuration files for each process and also in the DNS SRV records."
msgstr "Untuk menggunakan strategi ini, setiap layanan (SIP, XMPP, dan TURN) membutuhkan alamat-alamat IP yang berbeda. Semua layanan masih bisa diwadahi pada host yang sama karena Linux mendukung beberapa alamat IP pada satu host.  Nomor port, 443, harus ditentukan di berkas konfigurasi untuk setiap proses dan juga di record SRV DNS."

msgid "Adding WebRTC"
msgstr "Menambahkan WebRTC"

msgid "Falcot wants to let customers make phone calls directly from the web site. The Falcot administrators also want to use WebRTC as part of their disaster recovery plan, so staff can use web browsers at home to log in to the company phone system and work normally in an emergency."
msgstr "Falcot ingin membiarkan pelanggan membuat panggilan telepon secara langsung dari situs web. Para administrator Falcot juga ingin menggunakan WebRTC sebagai bagian dari rencana pemulihan bencana, sehingga staf dapat menggunakan peramban web di rumah untuk log masuk ke sistem telepon perusahaan dan bekerja secara normal dalam keadaan darurat."

msgid "<primary>WebRTC</primary>"
msgstr "<primary>WebRTC</primary>"

msgid "<primary>SIP</primary><secondary>WebSockets</secondary>"
msgstr "<primary>SIP</primary><secondary>WebSockets</secondary>"

msgid "<emphasis>IN PRACTICE</emphasis> Try WebRTC"
msgstr "<emphasis>DALAM PRAKTEK</emphasis> Mencoba WebRTC"

msgid "<primary>WebRTC</primary><secondary>demonstration</secondary>"
msgstr "<primary>Demonstrasi</primary><secondary>WebRTC</secondary>"

#, fuzzy
#| msgid "If you have not tried WebRTC before, there are various sites that give an online demonstration and test facilities. <ulink type=\"block\" url=\"http://www.sip5060.net/test-calls\" />"
msgid "If you have not tried WebRTC before, there are various sites that give an online demonstration and test facilities. <ulink type=\"block\" url=\"https://www.sip5060.net/test-calls\" />"
msgstr "Jika Anda belum pernah mencoba WebRTC, ada berbagai situs yang memberikan demontrasi daring dan fasilitas pengujian. <ulink type=\"block\" url=\"http://www.sip5060.net/test-calls\" />"

#, fuzzy
#| msgid "WebRTC is a rapidly evolving technology and it is essential to use packages from the <emphasis role=\"distribution\">jessie-backports</emphasis> or <emphasis role=\"distribution\">Testing</emphasis> distributions."
msgid "WebRTC is a rapidly evolving technology and it is essential to use packages from the <emphasis role=\"distribution\">Testing</emphasis> distribution. Another option is to compile the software."
msgstr "WebRTC adalah sebuah teknologi yang berkembang pesat dan sangat penting untuk menggunakan paket dari distribusi <emphasis role=\"distribution\">jessie-backport</emphasis> atau <emphasis role=\"distribution\">Testing</emphasis>."

msgid "WebRTC uses a simple API to provide browsers and mobile applications with RTC, it is free software and it is being developed by Google. <ulink type=\"block\" url=\"https://webrtc.org\" />"
msgstr ""

msgid "A very flexible approach is using GStreamer's WebRTC implementation. It enables pipeline-based multimedia applications, which allows developing interesting and highly efficient applications. A good starting point is the following demo by Centricular, the main company that is developing it: <ulink type=\"block\" url=\"https://github.com/centricular/gstwebrtc-demos\" />"
msgstr ""

#, fuzzy
#| msgid "<primary>Samba</primary>"
msgid "<primary>GStreamer</primary>"
msgstr "<primary>Samba</primary>"

#, fuzzy
#| msgid "More advanced click-to-call web sites typically use server-side scripting to generate the <literal>config.js</literal> file dynamically. The <ulink url=\"http://drucall.org\">DruCall</ulink> source code demonstrates how to do this with PHP."
msgid "More advanced click-to-call web sites typically use server-side scripting to generate the <literal>config.js</literal> file dynamically. The <ulink url=\"https://www.drupal.org/project/drucall\">DruCall</ulink> source code demonstrates how to do this with PHP."
msgstr "Situs-situs web klik-untuk-memanggil yang lebih lanjut biasanya menggunakan script sisi server untuk menghasilkan berkas <literal>config.js</literal> secara dinamis. Kode sumber <ulink url=\"http://drucall.org\">DruCall</ulink> menunjukkan bagaimana melakukan ini dengan PHP."

msgid "<primary>DruCall</primary>"
msgstr "<primary>DruCall</primary>"

msgid "This chapter sampled only a fraction of the available server software; however, most of the common network services were described. Now it is time for an even more technical chapter: we'll go into deeper detail for some concepts, describe massive deployments and virtualization."
msgstr "Bab ini mencuplik hanya sebagian kecil dari perangkat lunak server yang tersedia; namun, sebagian besar layanan jaringan umum telah digambarkan. Sekarang saatnya untuk bab yang bahkan lebih teknis: kita akan pergi ke detail yang lebih untuk beberapa konsep, menggambarkan penyebaran besar-besaran, dan virtualisasi."

#~ msgid "Many modern network services require encryption technology to operate reliably and securely, especially when used on the public Internet. X.509 Certificates (which may also be referred to as SSL Certificates or TLS Certificates) are frequently used for this purpose. A certificate for a specific domain can often be shared between more than one of the services discussed in this chapter."
#~ msgstr "Kebanyakan layanan jaringan moderm memerlukan teknologi enkripsi agar beroperasi secara aman dan terpercaya, khususnya ketika digunakan pada internet publik. Sertifikat X.509 (yang mana dapat direferensikan sebagai Sertifikat SSL atau Sertifikat TLS) sering digunakan untuk tujuan ini. Sebuah sertifikat untuk domain tertentu seringkali dapat berbagi antara lebih dari satu layanan dibahas pada bagian ini."

#~ msgid "<primary>TLS</primary>"
#~ msgstr "<primary>TLS</primary>"

#~ msgid "<primary>X.509</primary>"
#~ msgstr "<primary>X.509</primary>"

#~ msgid "<primary>Certificates</primary>"
#~ msgstr "<primary>Sertifikat</primary>"

#~ msgid "In general they should only be used for testing purposes, and normal service must use real certificates; these can be generated with the procedure described in <xref linkend=\"sect.easy-rsa\" />."
#~ msgstr "Pada umumnya mereka hanya boleh digunakan untuk tujuan pengujian, dan layanan normal harus menggunakan sertifikat nyata; ini dapat dihasilkan dengan prosedur yang dijelaskan dalam <xref linkend=\"sect.easy-rsa\" />."

#~ msgid "Example <filename>/etc/postfix/virtual</filename> file"
#~ msgstr "Contoh berkas <filename>/etc/postfix/virtual</filename>"

#~ msgid "The <filename>/etc/postfix/vmailbox</filename> file"
#~ msgstr "Berkas <filename>/etc/postfix/vmailbox</filename>"

#~ msgid "<primary>RBL</primary>"
#~ msgstr "<primary>RBL</primary>"

#~ msgid "Each SMTP exchange starts with a <literal>HELO</literal> (or <literal>EHLO</literal>) command, followed by the name of the sending email server; checking the validity of this name can be interesting."
#~ msgstr "Setiap pertukaran SMTP dimulai dengan perintah <literal>HELO</literal> (atau <literal>EHLO</literal>), diikuti oleh nama server email pengirim; memeriksa validitas nama ini bisa menarik."

#~ msgid ""
#~ "\n"
#~ "smtpd_helo_restrictions = permit_mynetworks,\n"
#~ "    reject_invalid_hostname,\n"
#~ "    check_helo_access hash:/etc/postfix/access_helo,\n"
#~ "    reject_non_fqdn_hostname,\n"
#~ "    warn_if_reject reject_unknown_hostname"
#~ msgstr ""
#~ "\n"
#~ "smtpd_helo_restrictions = permit_mynetworks,\n"
#~ "    reject_invalid_hostname,\n"
#~ "    check_helo_access hash:/etc/postfix/access_helo,\n"
#~ "    reject_non_fqdn_hostname,\n"
#~ "    warn_if_reject reject_unknown_hostname"

#~ msgid "<primary>web server</primary>"
#~ msgstr "<primary>web server</primary>"

#~ msgid "<emphasis>GOING FURTHER</emphasis> Adding support for SSL"
#~ msgstr "<emphasis>LEBIH JAUH</emphasis> Menambahkan dukungan untuk SSL"

#~ msgid "<primary>RPC</primary>"
#~ msgstr "<primary>RPC</primary>"

#~ msgid "<primary>SMB</primary>"
#~ msgstr "<primary>SMB</primary>"

#~ msgid "<primary>CIFS</primary>"
#~ msgstr "<primary>CIFS</primary>"

#~ msgid "The <emphasis role=\"pkg\">samba-doc</emphasis> package contains a wealth of commented example files in <filename>/usr/share/doc/samba-doc/examples/</filename>."
#~ msgstr "Paket <emphasis role=\"pkg\">samba-doc</emphasis> berisi banyak berkas contoh dengan komentar dalam <filename>/usr/share/doc/samba-doc/examples/</filename>."

#~ msgid "Indicates that Samba should act as a Netbios name server (WINS) for the local network."
#~ msgstr "Menunjukkan bahwa Samba harus bertindak sebagai server nama Netbios (WINS) untuk jaringan lokal."

#~ msgid "<primary>PICS</primary>"
#~ msgstr "<primary>PICS</primary>"

#~ msgid "Allow LDAPv2 protocol? No, there is no point in that. All the tools we are going to use understand the LDAPv3 protocol."
#~ msgstr "Izinkan protokol LDAPv2? Tidak, itu tidak ada gunanya. Semua alat yang akan kita gunakan memahami protokol LDAPv3."

#~ msgid "Special LDAP privileges for root"
#~ msgstr "Hak LDAP khusus bagi root"

#~ msgid "yes"
#~ msgstr "ya"

#~ msgid "Make the configuration file readable/writeable by its owner only"
#~ msgstr "Jadikan berkas konfigurasi hanya dapat dibaca/ditulisi oleh pemiliknya"

#~ msgid ""
#~ "\n"
#~ "# /etc/nsswitch.conf\n"
#~ "#\n"
#~ "# Example configuration of GNU Name Service Switch functionality.\n"
#~ "# If you have the `glibc-doc' and `info' packages installed, try:\n"
#~ "# `info libc \"Name Service Switch\"' for information about this file.\n"
#~ "\n"
#~ "passwd: ldap compat\n"
#~ "group: ldap compat\n"
#~ "shadow: ldap compat\n"
#~ "\n"
#~ "hosts: files dns ldap\n"
#~ "networks: ldap files\n"
#~ "\n"
#~ "protocols: ldap db files\n"
#~ "services: ldap db files\n"
#~ "ethers: ldap db files\n"
#~ "rpc: ldap db files\n"
#~ "\n"
#~ "netgroup: ldap files"
#~ msgstr ""
#~ "\n"
#~ "# /etc/nsswitch.conf\n"
#~ "#\n"
#~ "# Example configuration of GNU Name Service Switch functionality.\n"
#~ "# If you have the `glibc-doc' and `info' packages installed, try:\n"
#~ "# `info libc \"Name Service Switch\"' for information about this file.\n"
#~ "\n"
#~ "passwd: ldap compat\n"
#~ "group: ldap compat\n"
#~ "shadow: ldap compat\n"
#~ "\n"
#~ "hosts: files dns ldap\n"
#~ "networks: ldap files\n"
#~ "\n"
#~ "protocols: ldap db files\n"
#~ "services: ldap db files\n"
#~ "ethers: ldap db files\n"
#~ "rpc: ldap db files\n"
#~ "\n"
#~ "netgroup: ldap files"

#~ msgid "These services rely on X.509 certificates both for authentication and confidentiality purposes. See <xref linkend=\"sect.easy-rsa\" /> for details on how to create them. Alternatively the <emphasis>Real-Time Communications Quick Start Guide</emphasis> also has some useful explanations: <ulink type=\"block\" url=\"http://rtcquickstart.org/guide/multi/tls.html\" />"
#~ msgstr "Layanan-layanan ini bergantung pada sertifikat X.509 untuk otentikasi dan kerahasiaan. Lihat <xref linkend=\"sect.easy-rsa\" /> untuk rincian tentang bagaimana untuk menciptakan mereka. <emphasis> Panduan Ringkas Komunikasi Real-Time</emphasis> juga memiliki beberapa penjelasan yang berguna: <ulink type=\"block\" url=\"http://rtcquickstart.org/guide/multi/tls.html\" />"

#~ msgid "Install the TURN server"
#~ msgstr "Pasang server TURN"

#~ msgid "Edit the <filename>/etc/reTurn/reTurnServer.config</filename> configuration file. The most important thing to do is insert the IP addresses of the server."
#~ msgstr "Sunting berkas konfigurasi <filename>/etc/reTurn/reTurnServer.config</filename>. Yang paling penting untuk dilakukan adalah memasukkan alamat IP server."

#~ msgid ""
#~ "\n"
#~ "# your IP addresses go here:\n"
#~ "TurnAddress = 198.51.100.19\n"
#~ "TurnV6Address = 2001:DB8:1000:2000::19\n"
#~ "AltStunAddress = 198.51.100.20\n"
#~ "# your domain goes here, it must match the value used\n"
#~ "# to hash your passwords if they are already hashed\n"
#~ "# using the HA1 algorithm:\n"
#~ "AuthenticationRealm = myrealm\n"
#~ "\n"
#~ "UserDatabaseFile = /etc/reTurn/users.txt\n"
#~ "UserDatabaseHashedPasswords = true"
#~ msgstr ""
#~ "\n"
#~ "# alamat IP anda di sini:\n"
#~ "TurnAddress = 198.51.100.19\n"
#~ "TurnV6Address = 2001:DB8:1000:2000::19\n"
#~ "AltStunAddress = 198.51.100.20\n"
#~ "# your domain goes here, it must match the value used\n"
#~ "# to hash your passwords if they are already hashed\n"
#~ "# using the HA1 algorithm:\n"
#~ "AuthenticationRealm = myrealm\n"
#~ "\n"
#~ "UserDatabaseFile = /etc/reTurn/users.txt\n"
#~ "UserDatabaseHashedPasswords = true"

#~ msgid "Restart the service."
#~ msgstr "Restart layanan."

#~ msgid "Managing the TURN users"
#~ msgstr "Mengelola pengguna TURN"

#~ msgid "Use the htdigest utility to manage the TURN server user list."
#~ msgstr "Gunakan utilitas htdigest untuk mengelola daftar pengguna server TURN."

#~ msgid "<computeroutput># </computeroutput><userinput>htdigest /etc/reTurn/users.txt myrealm joe</userinput>"
#~ msgstr "<computeroutput># </computeroutput><userinput>htdigest /etc/reTurn/users.txt myrealm joe</userinput>"

#~ msgid "Use the HUP signal to make the server reload the <filename>/etc/reTurn/users.txt</filename> file after changing it or enable the automatic reload feature in <filename>/etc/reTurn/reTurnServer.config</filename>."
#~ msgstr "Gunakan sinyal HUP untuk membuat server memuat ulang berkas <filename>/etc/reTurn/users.txt</filename> setelah mengubahnya atau aktifkan fitur muat ulang otomatis di <filename>/etc/reTurn/reTurnServer.config</filename>."

#~ msgid "Install the <emphasis role=\"pkg\">repro</emphasis> package. Using the package from <emphasis role=\"distribution\">jessie-backports</emphasis> is highly recommended, as it has the latest improvements for maximizing connectivity and resilience."
#~ msgstr "Instal paket <emphasis role=\"pkg\">repro</emphasis>. Menggunakan paket dari <emphasis role=\"distribution\">jessie-backport</emphasis> sangat dianjurkan, karena memiliki perbaikan terbaru untuk memaksimalkan konektivitas dan ketahanan."

#~ msgid "Edit the <filename>/etc/repro/repro.config</filename> configuration file. The most important thing to do is insert the IP addresses of the server. The example below demonstrates how to setup both regular SIP and WebSockets/WebRTC, using TLS, IPv4 and IPv6:"
#~ msgstr "Sunting berkas konfigurasi <filename>/etc/repro/repro.config</filename>. Yang paling penting untuk dilakukan adalah memasukkan alamat IP server. Contoh di bawah menunjukkan bagaimana menyiapkan SIP reguler dan WebSockets/WebRTC, menggunakan TLS, IPv4, dan IPv6:"

#~ msgid ""
#~ "\n"
#~ "# Transport1 will be for SIP over TLS connections\n"
#~ "# We use port 5061 here but if you have clients connecting from\n"
#~ "# locations with firewalls you could change this to listen on port 443\n"
#~ "Transport1Interface = 198.51.100.19:5061\n"
#~ "Transport1Type = TLS\n"
#~ "Transport1TlsDomain = falcot.com\n"
#~ "Transport1TlsClientVerification = Optional\n"
#~ "Transport1RecordRouteUri = sip:falcot.com;transport=TLS\n"
#~ "Transport1TlsPrivateKey = /etc/ssl/private/falcot.com-key.pem\n"
#~ "Transport1TlsCertificate = /etc/ssl/public/falcot.com.pem\n"
#~ "\n"
#~ "# Transport2 is the IPv6 version of Transport1\n"
#~ "Transport2Interface = 2001:DB8:1000:2000::19:5061\n"
#~ "Transport2Type = TLS\n"
#~ "Transport2TlsDomain = falcot.com\n"
#~ "Transport2TlsClientVerification = Optional\n"
#~ "Transport2RecordRouteUri = sip:falcot.com;transport=TLS\n"
#~ "Transport2TlsPrivateKey = /etc/ssl/private/falcot.com-key.pem\n"
#~ "Transport2TlsCertificate = /etc/ssl/public/falcot.com.pem\n"
#~ "\n"
#~ "# Transport3 will be for SIP over WebSocket (WebRTC) connections\n"
#~ "# We use port 8443 here but you could use 443 instead\n"
#~ "Transport3Interface = 198.51.100.19:8443\n"
#~ "Transport3Type = WSS\n"
#~ "Transport3TlsDomain = falcot.com\n"
#~ "# This would require the browser to send a certificate, but browsers\n"
#~ "# don't currently appear to be able to, so leave it as None:\n"
#~ "Transport3TlsClientVerification = None\n"
#~ "Transport3RecordRouteUri = sip:falcot.com;transport=WSS\n"
#~ "Transport3TlsPrivateKey = /etc/ssl/private/falcot.com-key.pem\n"
#~ "Transport3TlsCertificate = /etc/ssl/public/falcot.com.pem\n"
#~ "\n"
#~ "# Transport4 is the IPv6 version of Transport3\n"
#~ "Transport4Interface = 2001:DB8:1000:2000::19:8443\n"
#~ "Transport4Type = WSS\n"
#~ "Transport4TlsDomain = falcot.com\n"
#~ "Transport4TlsClientVerification = None\n"
#~ "Transport4RecordRouteUri = sip:falcot.com;transport=WSS\n"
#~ "Transport4TlsPrivateKey = /etc/ssl/private/falcot.com-key.pem\n"
#~ "Transport4TlsCertificate = /etc/ssl/public/falcot.com.pem\n"
#~ "\n"
#~ "# Transport5: this could be for TCP connections to an Asterisk server\n"
#~ "# in your internal network.  Don't allow port 5060 through the external\n"
#~ "# firewall.\n"
#~ "Transport5Interface = 198.51.100.19:5060\n"
#~ "Transport5Type = TCP\n"
#~ "Transport5RecordRouteUri = sip:198.51.100.19:5060;transport=TCP\n"
#~ "\n"
#~ "HttpBindAddress = 198.51.100.19, 2001:DB8:1000:2000::19\n"
#~ "HttpAdminUserFile = /etc/repro/users.txt\n"
#~ "\n"
#~ "RecordRouteUri = sip:falcot.com;transport=tls\n"
#~ "ForceRecordRouting = true\n"
#~ "EnumSuffixes = e164.arpa, sip5060.net, e164.org\n"
#~ "DisableOutbound = false\n"
#~ "EnableFlowTokens = true\n"
#~ "EnableCertificateAuthenticator = True"
#~ msgstr ""
#~ "\n"
#~ "# Transport1 untuk SIP di atas koneks TLS\n"
#~ "# We use port 5061 here but if you have clients connecting from\n"
#~ "# locations with firewalls you could change this to listen on port 443\n"
#~ "Transport1Interface = 198.51.100.19:5061\n"
#~ "Transport1Type = TLS\n"
#~ "Transport1TlsDomain = falcot.com\n"
#~ "Transport1TlsClientVerification = Optional\n"
#~ "Transport1RecordRouteUri = sip:falcot.com;transport=TLS\n"
#~ "Transport1TlsPrivateKey = /etc/ssl/private/falcot.com-key.pem\n"
#~ "Transport1TlsCertificate = /etc/ssl/public/falcot.com.pem\n"
#~ "\n"
#~ "# Transport2 is the IPv6 version of Transport1\n"
#~ "Transport2Interface = 2001:DB8:1000:2000::19:5061\n"
#~ "Transport2Type = TLS\n"
#~ "Transport2TlsDomain = falcot.com\n"
#~ "Transport2TlsClientVerification = Optional\n"
#~ "Transport2RecordRouteUri = sip:falcot.com;transport=TLS\n"
#~ "Transport2TlsPrivateKey = /etc/ssl/private/falcot.com-key.pem\n"
#~ "Transport2TlsCertificate = /etc/ssl/public/falcot.com.pem\n"
#~ "\n"
#~ "# Transport3 will be for SIP over WebSocket (WebRTC) connections\n"
#~ "# We use port 8443 here but you could use 443 instead\n"
#~ "Transport3Interface = 198.51.100.19:8443\n"
#~ "Transport3Type = WSS\n"
#~ "Transport3TlsDomain = falcot.com\n"
#~ "# This would require the browser to send a certificate, but browsers\n"
#~ "# don't currently appear to be able to, so leave it as None:\n"
#~ "Transport3TlsClientVerification = None\n"
#~ "Transport3RecordRouteUri = sip:falcot.com;transport=WSS\n"
#~ "Transport3TlsPrivateKey = /etc/ssl/private/falcot.com-key.pem\n"
#~ "Transport3TlsCertificate = /etc/ssl/public/falcot.com.pem\n"
#~ "\n"
#~ "# Transport4 is the IPv6 version of Transport3\n"
#~ "Transport4Interface = 2001:DB8:1000:2000::19:8443\n"
#~ "Transport4Type = WSS\n"
#~ "Transport4TlsDomain = falcot.com\n"
#~ "Transport4TlsClientVerification = None\n"
#~ "Transport4RecordRouteUri = sip:falcot.com;transport=WSS\n"
#~ "Transport4TlsPrivateKey = /etc/ssl/private/falcot.com-key.pem\n"
#~ "Transport4TlsCertificate = /etc/ssl/public/falcot.com.pem\n"
#~ "\n"
#~ "# Transport5: this could be for TCP connections to an Asterisk server\n"
#~ "# in your internal network.  Don't allow port 5060 through the external\n"
#~ "# firewall.\n"
#~ "Transport5Interface = 198.51.100.19:5060\n"
#~ "Transport5Type = TCP\n"
#~ "Transport5RecordRouteUri = sip:198.51.100.19:5060;transport=TCP\n"
#~ "\n"
#~ "HttpBindAddress = 198.51.100.19, 2001:DB8:1000:2000::19\n"
#~ "HttpAdminUserFile = /etc/repro/users.txt\n"
#~ "\n"
#~ "RecordRouteUri = sip:falcot.com;transport=tls\n"
#~ "ForceRecordRouting = true\n"
#~ "EnumSuffixes = e164.arpa, sip5060.net, e164.org\n"
#~ "DisableOutbound = false\n"
#~ "EnableFlowTokens = true\n"
#~ "EnableCertificateAuthenticator = True"

#~ msgid "Use the <command>htdigest</command> utility to manage the admin password for the web interface. The username must be <emphasis>admin</emphasis> and the realm name must match the value specified in <filename>repro.config</filename>."
#~ msgstr "Gunakan utilitas <command>htdigest</command> untuk mengelola kata sandi admin untuk antarmuka web. Nama pengguna harus <emphasis>admin</emphasis> dan nama realm harus sesuai nilai yang ditentukan dalam <filename>repro.config</filename>."

#~ msgid "Managing the SIP proxy"
#~ msgstr "Mengelola proksi SIP"

#~ msgid "Go to the web interface at <literal>http://sip-proxy.falcot.com:5080</literal> to complete the configuration by adding domains, local users and static routes."
#~ msgstr "Pergi ke antarmuka web di <literal>http://sip-proxy.falcot.com:5080</literal> untuk menyelesaikan konfigurasi dengan menambahkan domain, pengguna lokal, dan rute statik."

#~ msgid "The first step is to add the local domain. The process must be restarted after adding or removing domains from the list."
#~ msgstr "Langkah pertama adalah untuk menambahkan domain lokal. Proses harus dimulai ulang setelah menambahkan atau menghapus domain dari daftar."

#~ msgid "The proxy knows how to route calls between local users and full SIP address, the routing configuration is only necessary for overriding default behavior, for example, to recognize phone numbers, add a prefix and route them to a SIP provider."
#~ msgstr "Proksi tahu bagaimana untuk mengarahkan panggilan antara pengguna lokal dan alamat SIP yang lengkap, konfigurasi routing hanya diperlukan untuk mengganti perilaku default, misalnya, untuk mengenali nomor telepon, tambahkan awalan, dan rute mereka ke penyedia SIP."

#~ msgid "Install the <emphasis role=\"pkg\">prosody</emphasis> package. Using the package from <emphasis role=\"distribution\">jessie-backports</emphasis> is highly recommended, as it has the latest improvements for maximizing connectivity and resilience."
#~ msgstr "Instal paket <emphasis role=\"pkg\">prosody</emphasis>. Menggunakan paket dari <emphasis role=\"distribution\">jessie-backport</emphasis> sangat dianjurkan, karena memiliki perbaikan terbaru untuk memaksimalkan konektivitas dan ketahanan."

#~ msgid "JSCommunicator is a generic, unbranded WebRTC phone that does not require any server-side scripting such as PHP. It is built exclusively with HTML, CSS and JavaScript. It is the basis for many other WebRTC services and modules for more advanced web publishing frameworks. <ulink type=\"block\" url=\"http://jscommunicator.org\" />"
#~ msgstr "JSCommunicator adalah telepon WebRTC generik, tanpa merek, yang tidak memerlukan script sisi server apapun seperti PHP. Hal ini dibangun secara eksklusif dengan HTML, CSS, dan JavaScript. Ini adalah dasar bagi banyak layanan WebRTC lainnya dan modul untuk penerbitan framework web yang lebih lanjut. <ulink type=\"block\" url=\"http://jscommunicator.org\" />"

#~ msgid "<primary>JSCommunicator</primary>"
#~ msgstr "<primary>JSCommunicator</primary>"

#~ msgid "The package <emphasis role=\"pkg\">jscommunicator-web-phone</emphasis> is the quickest way to install a WebRTC phone into a web site. It requires a SIP proxy with a WebSocket transport. The instructions in <xref linkend=\"sect.sip-server-install\" /> include the necessary details to enable the WebSocket transport in the <emphasis role=\"pkg\">repro</emphasis> SIP proxy."
#~ msgstr "Paket <emphasis role=\"pkg\">jscommunicator-web-telepon</emphasis> adalah cara tercepat untuk menginstal telepon WebRTC ke sebuah situs web. Hal ini membutuhkan proksi SIP dengan transport WebSocket. Petunjuk di <xref linkend=\"sect.sip-server-install\" /> memuat rincian yang diperlukan untuk mengaktifkan transport WebSocket di proksi SIP <emphasis role=\"pkg\">repro</emphasis>."

#~ msgid "After installing <emphasis role=\"pkg\">jscommunicator-web-phone</emphasis>, there are various ways to use it. A simple strategy is to include or copy the configuration from <filename>/etc/jscommunicator-web-phone/apache.conf</filename> into an Apache virtual host configuration."
#~ msgstr "Setelah menginstal <emphasis role=\"pkg\">jscommunicator-web-phone</emphasis>, ada berbagai cara untuk menggunakannya. Strategi yang sederhana adalah untuk menyertakan atau menyalin konfigurasi dari <filename>/etc/jscommunicator-web-phone/apache.conf</filename> ke konfigurasi virtual host Apache."

#~ msgid "Once the web-phone files are available in the web server, customize the <filename>/etc/jscommunicator-web-phone/config.js</filename> to point at the TURN server and SIP proxy. For example:"
#~ msgstr "Setelah berkas-berkas web-phone tersedia di server web, sesuaikan <filename>/etc/jscommunicator-web-phone/config.js</filename> untuk menunjuk pada server TURN dan proksi SIP. Sebagai contoh:"

#~ msgid ""
#~ "\n"
#~ "JSCommSettings = {\n"
#~ "\n"
#~ "  // Web server environment\n"
#~ "  webserver: {\n"
#~ "    url_prefix: null            // If set, prefix used to construct sound/ URLs\n"
#~ "  },\n"
#~ "\n"
#~ "  // STUN/TURN media relays\n"
#~ "  stun_servers: [],\n"
#~ "  turn_servers: [\n"
#~ "    { server:\"turn:turn-server.falcot.com?transport=udp\", username:\"joe\", password:\"j0Ep455d\" }\n"
#~ "  ],\n"
#~ "\n"
#~ "  // WebSocket connection\n"
#~ "  websocket: {\n"
#~ "      // Notice we use the falcot.com domain certificate and port 8443\n"
#~ "      // This matches the Transport3 and Transport4 example in\n"
#~ "      // the falcot.com repro.config file\n"
#~ "    servers: 'wss://falcot.com:8443',\n"
#~ "    connection_recovery_min_interval: 2,\n"
#~ "    connection_recovery_max_interval: 30\n"
#~ "  },\n"
#~ "\n"
#~ "  ..."
#~ msgstr ""
#~ "\n"
#~ "JSCommSettings = {\n"
#~ "\n"
#~ "  // Web server environment\n"
#~ "  webserver: {\n"
#~ "    url_prefix: null            // If set, prefix used to construct sound/ URLs\n"
#~ "  },\n"
#~ "\n"
#~ "  // STUN/TURN media relays\n"
#~ "  stun_servers: [],\n"
#~ "  turn_servers: [\n"
#~ "    { server:\"turn:turn-server.falcot.com?transport=udp\", username:\"joe\", password:\"j0Ep455d\" }\n"
#~ "  ],\n"
#~ "\n"
#~ "  // WebSocket connection\n"
#~ "  websocket: {\n"
#~ "      // Notice we use the falcot.com domain certificate and port 8443\n"
#~ "      // This matches the Transport3 and Transport4 example in\n"
#~ "      // the falcot.com repro.config file\n"
#~ "    servers: 'wss://falcot.com:8443',\n"
#~ "    connection_recovery_min_interval: 2,\n"
#~ "    connection_recovery_max_interval: 30\n"
#~ "  },\n"
#~ "\n"
#~ "  ..."