Summary

Project website debian-handbook.info
Instructions for translators

https://debian-handbook.info/contribute/ Mailing list for translators: <debian-handbook-translators@lists.alioth.debian.org
Project maintainers3 User avatar rhertzogUser avatar pereUser avatar dleidert
Translation license GNU General Public License v2.0 or later
Translation process
  • Translations can be made directly.
  • Translation suggestions can be made.
  • Any authenticated user can contribute.
  • The translation uses bilingual files.
Source code repository https://salsa.debian.org/hertzog/debian-handbook.git
Repository branch bookworm/main
Last remote commit Update PO files c274c239
User avatar dleidert authored 2 months ago
Last commit in Weblate ja-JP: Translated using Weblate. 4a1dd9ee
User avatar informatiekantoor authored yesterday
Weblate repository https://hosted.weblate.org/git/debian-handbook/12_advanced-administration/
File mask */14_security.po
Translation file Download zh-CN/14_security.po
Last change April 22, 2025, 2:07 a.m.
Last change made by None
Language Chinese (Simplified Han script)
Language code zh_Hans
Text direction Left to right
Case sensitivity Case-insensitive
Number of speakers 1,286,444,445
Number of plurals 1
Plural type None
Plurals
Plural formula 0
3 weeks ago

String statistics

Strings percent Hosted strings Words percent Hosted words Characters percent Hosted characters
Total 567 16,138 128,724
Translated 49% 282 37% 6,072 35% 46,165
Needs editing 38% 221 39% 6,302 41% 53,652
Read-only 0% 0 0% 0 0% 0
Failing checks 35% 203 22% 3,642 29% 38,440
Strings with suggestions 1% 10 1% 194 1% 1,301
Untranslated strings 11% 64 23% 3,764 22% 28,907
Last 12 months Previous

Activity in last 12 months

5 changes 5 changes 1 change 0 changes 4 changes 0 changes 20 changes 2 changes 0 changes 0 changes 82 changes 0 changes 42 changes 0 changes 4 changes 0 changes 0 changes 0 changes 0 changes 87 changes 0 changes 0 changes 0 changes 0 changes
JulAugSepOctNovDecJanFebMarAprMayJun

Quick numbers

16,138
Hosted words
567
Hosted strings
49%
Translated
12
Contributors
and previous 30 days

Trends of last 30 days

Hosted words
+100%
Hosted strings
+100%
Translated
+49%
Contributors
User avatar None

Resource updated
The “zh-CN/14_security.po” file was changed. 2 months ago
User avatar None

String added in the repository
comparing the system to the last known uncompromised backup can quickly reveal the changes left by the attacker, e.g. files added, changed, or deleted;
 
2 months ago
User avatar None

String added in the repository
Once the “dynamic” elements have been saved, the next step is to store a complete image of the hard-disk. Making such an image is impossible if the filesystem is still evolving, which is why it must be remounted read-only. The simplest solution is often to halt the server brutally (after running <command>sync</command>) and reboot it on a rescue CD. Each partition should be copied with a tool such as <command>dd</command>; these images can be sent to another server (possibly with the very convenient <command>nc</command> tool). Another possibility may be even simpler: just get the disk out of the machine and replace it with a new one that can be reformatted and reinstalled. Most server providers offer a so-called rescue-console that essentially provides the same functionality as a rescue CD.
一旦“动态”元素已经被保存,下一步就是存储整个硬盘镜像。如果文件系统仍在变化,是不可能制作镜像的,就需要以只读方式挂载。最简单的办法是(在运行 <command>sync</command> 后)直接停机并使用救援 CD 重启系统。每个分区使用类似 <command>dd</command> 来拷贝;这些镜像可以发送到其他服务器(可以使用很方便的 <command>nc</command> 工具)。另一种可能更简单:把磁盘从机器里取出来并使用新的替代它,从新格式化,重装系统。
2 months ago
User avatar None

Source string changed
Once the “dynamic” elements have been saved, the next step is to store a complete image of the hard-disk. Making such an image is impossible if the filesystem is still evolving, which is why it must be remounted read-only. The simplest solution is often to halt the server brutally (after running <command>sync</command>) and reboot it on a rescue CD. Each partition should be copied with a tool such as <command>dd</command>; these images can be sent to another server (possibly with the very convenient <command>nc</command> tool). Another possibility may be even simpler: just get the disk out of the machine and replace it with a new one that can be reformatted and reinstalled. Most server providers offer a so-called rescue-console that essentially provides the same functionality as a rescue CD.
2 months ago
User avatar None

String added in the repository
This may only be possible if the server is physically accessible. When the server is hosted in a hosting provider's data center halfway across the country, or if the server is not accessible for any other reason, it is usually a good idea to start by gathering some important information (see <xref linkend="sect.keeping-everything-that-could-be-used-as-evidence" />, <xref linkend="sect.forensic-analysis" /> and <xref linkend="sect.reconstituting-the-attack-scenario" />), then isolating that server as much as possible by shutting down as many services as possible (usually, everything but <command>sshd</command>). This case is still awkward, since one can't rule out the possibility of the attacker having SSH access like the administrator has; this makes it harder to “clean” the machines. If possible, and if the provider supports it, the server can be put offline and accessed through the providers KVM/IPMI interface or their rescue console. If the affected machine is a virtual machine, a snapshot should be taken immediately to secure evidence.
这些只有在服务器可以物理访问时才有可能。如果服务器是位于半个国家之外的托管供应商数据中心,或者因为其他原因不能接近服务器,最好是先收集一些重要信息(参考随后章节),然后通过关闭尽可能多的服务,隔离尽可能多的服务器(通常,是除了 <command>sshd</command> 之外的所有服务)。这种情况仍然比较尴尬,因为你不能确定攻击者是否像管理员一样具有 SSH 访问权限;从而使清理机器更困难。
2 months ago
User avatar None

Source string changed
This may only be possible if the server is physically accessible. When the server is hosted in a hosting provider's data center halfway across the country, or if the server is not accessible for any other reason, it' is usually a good idea to start by gathering some important information (see following sections<xref linkend="sect.keeping-everything-that-could-be-used-as-evidence" />, <xref linkend="sect.forensic-analysis" /> and <xref linkend="sect.reconstituting-the-attack-scenario" />), then isolating that server as much as possible by shutting down as many services as possible (usually, everything but <command>sshd</command>). This case is still awkward, since one can't rule out the possibility of the attacker having SSH access like the administrator has; this makes it harder to “clean” the machines. If possible, and if the provider supports it, the server can be put offline and accessed through the providers KVM/IPMI interface or their rescue console. If the affected machine is a virtual machine, a snapshot should be taken immediately to secure evidence.
2 months ago
User avatar None

String added in the repository
a program that utilizes all CPU cores or memory;
 
2 months ago
User avatar None

String added in the repository
a command that suddenly shows errors like segmentation faults;
 
2 months ago
User avatar None

String added in the repository
Another very common scenario nowadays is a ransomware attack. The attackers will encrypt the data on the machine and leave a note with instructions how to pay ransom to get the key to decrypt the data. Of course, it is not for certain that even after paying, the data can be recovered or be sure it hasn't been stolen (and sold) as well.
 
2 months ago
User avatar None

String added in the repository
The consequences of an intrusion will have various levels of obviousness depending on the motivations of the attacker. “Script-kiddies“ only apply recipes they find on web sites; most often, they deface a web page or delete data. In more subtle cases, they add invisible contents to web pages so as to improve referrals to their own sites in search engines. In others, they simply install crypto-miners and use the compromised system to fill their crypto wallets.
侵入的结果会留下各自痕迹,取决于攻击者的动机。<emphasis>脚本小子(Script-kiddies)</emphasis>只会用他们在网上找到的方法;常常是涂改页面或者删除数据。狡猾一点的,会在网页中添加无形内容,来提高他们自己网站在搜索引擎中的引用次数。
2 months ago
Browse all translation changes