11 files changed, 1355 insertions, 91 deletions
diff --git a/debian/changelog b/debian/changelog
index f2e32f13e..71a950772 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,25 @@
+openssh (1:3.4p1-3) unstable; urgency=low
+  * Add myself to Uploaders: and begin acting as temporary maintainer, at
+    Matthew's request. (Normal service will resume in some months' time.)
+  * Add sharutils to Build-Depends (closes: #138465).
+  * Stop creating the /usr/doc/ssh symlink.
+  * Fix some debconf template typos (closes: #160358).
+  * Split debconf templates into one file per language.
+  * Add debconf template translations:
+    - Brazilian Portuguese (thanks, Andre Luis Lopes; closes: #106173).
+    - Danish (thanks, Claus Hindsgaul; closes: #126607).
+    - Japanese (thanks, Tomohiro KUBOTA; closes: #137427).
+    - Russian (thanks, Ilgiz Kalmetev; closes: #136610).
+    - Spanish (thanks, Carlos Valdivia Yag�e; closes: #129041).
+  * Update debconf template translations:
+    - French (thanks, Igor Genibel; closes: #151361).
+    - German (thanks, Axel Noetzold; closes: #147069).
+  * Some of these translations are fuzzy. Please send updates.
+ -- Colin Watson <cjwatson@debian.org>  Sun, 13 Oct 2002 14:09:57 +0100
 openssh (1:3.4p1-2) unstable; urgency=high
  * Get a security-fixed version into unstable
diff --git a/debian/control b/debian/control
index 7063438ad..acda7997a 100644
--- a/debian/control
+++ b/debian/control
@@ -2,8 +2,9 @@ Source: openssh
 Section: net
 Priority: standard
 Maintainer: Matthew Vernon <matthew@debian.org>
-Build-Depends: libwrap0-dev | libwrap-dev, zlib1g-dev | libz-dev, libssl-dev, libpam0g-dev | libpam-dev, libgnome-dev, groff, debhelper (>=1.1.17)
+Build-Depends: libwrap0-dev | libwrap-dev, zlib1g-dev | libz-dev, libssl-dev, libpam0g-dev | libpam-dev, libgnome-dev, groff, debhelper (>=1.1.17), sharutils
 Standards-Version: 3.5.2
+Uploaders: Colin Watson <cjwatson@debian.org>
 Package: ssh
 Architecture: any
diff --git a/debian/postinst b/debian/postinst
index 34fee95d8..10d61d86e 100644
--- a/debian/postinst
+++ b/debian/postinst
@@ -315,15 +315,6 @@ setup_startup
 setup_init
-# Automatically added by dh_installdocs
-if [ "$1" = "configure" ]; then
-        if [ -d /usr/doc -a ! -e /usr/doc/ssh -a -d /usr/share/doc/ssh ]; then
-                ln -sf ../share/doc/ssh /usr/doc/ssh
-        fi
-fi
-# End automatically added section
 [ -e /usr/share/debconf/confmodule ] && db_stop
 exit 0
diff --git a/debian/templates b/debian/templates
index a9b4394d4..b56f8a5ec 100644
--- a/debian/templates
+++ b/debian/templates
@@ -12,11 +12,11 @@ Description: Privilege separation
 .
 Privilege separation is turned on by default, so if you decide you
 want it turned off, you need to add "UsePrivilegeSeparation no" to
- /etc/ssh/sshd_config 
+ /etc/ssh/sshd_config.
 .
 NB! If you are running a 2.0 series Linux kernel, then privilege
 separation will not work at all, and your sshd will fail to start
- unless you explicity turn privilege separation off.
+ unless you explicitly turn privilege separation off.
 Template: ssh/privsep_ask
 Type: boolean
@@ -54,7 +54,7 @@ Description: Generate new configuration file
 edit sshd_config and set it to no if you wish.
 .
 It is strongly recommended that you let me generate a new configuration file 
- for you 
+ for you.
 Template: ssh/protocol2_only
 Type: boolean
@@ -89,21 +89,6 @@ Description: Do you want to continue (and risk killing active ssh sessions) ?
 .
 You can fix this by adding "--pidfile /var/run/sshd.pid" to the
 start-stop-daemon line in the stop section of the file.
-Description-de: Wollen Sie weitermachen (und das Killen der Session riskieren)?
- Die Version von /etc/init.d/ssh, die sie installiert haben, wird 
- vermutlich ihre aktiven ssh-Instanzen killen. Wenn Sie das Upgrade
- via ssh erledigen, dann ist das ein Problem.
- .
- Sie koennen das Problem beheben, indem sie "--pidfile /var/run/sshd.pid"
- an die start-stop-daemon Zeile in dem Bereich stop der Datei 
- /etc/init.d/ssh ergaenzen.
-Description-fr: Voulez vous continuer (et risquer de rompre les sessions ssh actives) ?
- Il est probable que la version de /etc/init.d/ssh install=E9e en ce moment
- tue toutes les instances de sshd lanc=E9es en ce moment. Si vous faite une
- mise =E0 jour via ssh, ca serait une Mauvaise Chose(tm).
- .
- Vous pouvez corriger /etc/init.d/ssh en ajoutant '--pidfile /var/run/sshd.pid'
- a la ligne 'start-stop-daemon' dans la section 'stop' du fichier.
 Template: ssh/forward_warning
 Type: note
@@ -115,36 +100,12 @@ Description: NOTE: Forwarding of X11 and Authorization disabled by default.
 in one of the configuration files, or with the -X command line option.
 .
 More details can be found in /usr/share/doc/ssh/README.Debian
-Description-de: HINWEIS: Forwarden von X11 und Authorisierung ist abgeschaltet.
- Aus Sicherheitsgruenden haben die Debian Pakete von ssh ForwardX11 und
- ForwardAgent auf "off" gesetzt.
- .
- Sie koenne dies fuer Server denen Sie trauen, entweder per Eintrag im
- den Konfigurations Dateien oder per -X Kommando-Zeilen Option aendern.
- .
- Weitere Details koennen Sie in /usr/share/doc/ssh/README.Debian finden.
-Description-fr: NOTE: Suivi de session X11 et d'agent d'autorisation d=E9sactiv=E9s par d=E9faut.
- Pour des raisons de s=E9curit=E9, la version Debian de ssh positionne les
- options ForwardX11 et ForwardAgent a ``Off'' par d=E9faut.
- .
- Vous pouvez activer ces options pour les serveurs en lesquels vous avez
- confiance, soit dans un des fichiers de configuration, soit avec l'option
- -X de la ligne de commande.
- .
- Plus d'informations sont disponibles dans /usr/share/doc/ssh/README.Debian.
 Template: ssh/insecure_rshd
 Type: note
 Description: Warning: rsh-server is installed --- probably not a good idea
 having rsh-server installed undermines the security that you were probably
 wanting to obtain by installing ssh.  I'd advise you to remove that package.
-Description-de: Warnung: rsh-server ist installiert --- moeglicherweise
- ist es eine schlechte Idee den rsh-server installiert zu haben, da er 
- die Sicherheit untergraebt. Wir empfehlen das Paket zu entfernen.
-Description-fr: Attention: le paquet rsh-server est install=E9 --- ce n'estprobablement pas une bonne id=E9e
- Avoir un serveur rsh install=E9 affaibli la s=E9curit=E9 que vous vouliez
- probablement obtenir en installant ssh. Je vous conseillerais de
- d=E9installer ce paquet.
 Template: ssh/insecure_telnetd
 Type: note
@@ -153,17 +114,6 @@ Description: Warning: telnetd is installed --- probably not a good idea
 need to offer telnet access) or install telnetd-ssl so that there is at
 least some chance that telnet sessions will not be sending unencrypted
 login/password and session information over the network.
-Description-de: Warnung: telnetd ist installiert --- schlechte Idee
- Wir empfehlen das telnetd Paket zu entfernen (wenn sie keine telnet Zugang
- anbieten) oder telnetd-ssl zu installieren, so dass die Moeglichkeit besteht
- dass das Login und Password nicht unverschluesselt durch das Netz gesendet
- werden.
-Description-fr: Attention: le paquet telnetd est install=E9 --- ce n'est probablement pas une bonne id=E9e
- Je vous conseillerais de, soit enlever le paquet telnetd (si ce service
- n'est pas n=E9cessaire), soit de le remplacer par le paquet telnetd-ssl
- pour qu'il y ait au moins une chance que les sessions telnet soient
- encrypt=E9es et que les mot de passes et logins ne passent pas en clair sur
- le r=E9seau.
 Template: ssh/encrypted_host_key_but_no_keygen
 Type: note
@@ -173,15 +123,6 @@ Description: Warning: you must create a new host key
 ssh-keygen utility from the old (non-free) SSH installation.
 .
 You will need to generate a new host key.
-Description-de: Warnung: Sie muessen einen neuen Host Key erzeugen
- Es existiert eine alte Variante von /etc/ssh/ssh_host_key welche
- per IDEA verschluesselt ist. OpenSSH kann eine solche Host Key Datei
- nicht lesen und ssh-keygen von der alten (nicht-freien) ssh Installation
- kann nicht gefunden werden.
-Description-fr: Attention: vous devez cr=E9er une nouvelle cl=E9 d'h=F4te
- Il existe un vieux /etc/ssh/ssh_host_key qui est encrypt=E9 avec IDEA.
- OpenSSH ne peut utiliser ce fichier de cl=E9, et je ne peux trouver
- l'utilitaire ssh-keygen de l'installation pr=E9c=E9dente (non libre) de SSH.
 Template: ssh/SUID_client
 Type: boolean
@@ -208,22 +149,3 @@ Description: Do you want to run the sshd server ?
 If you are only interested in using the ssh client for outbound
 connections on this machine, and don't want to log into it at all
 using ssh, then you can disable sshd here.
-Description-de: Wollen Sie den sshd Server starten?
- Das Paket enthaelt sowohl den client als auch den sshd server.
- .
- Normal wird der sshd Secure Shell Server fuer Remote Logins per ssh
- gestartet.
- .
- Wenn Sie nur den ssh client nutzen wollen, um sich mit anderen Rechner
- zu verbinden und sich nicht per ssh in diesen Computer einloggen wollen, 
- dann koennen Sie hier den sshd abschalten.
-Description-fr: Voulez vous utiliser le serveur sshd ?
- Ce paquet contient a la fois le client ssh et le serveur sshd.
- .
- Normalement le serveur sshd sera lanc=E9 pour permettre les logins distants
- via ssh.
- .
- Si vous d=E9sirez seulement utiliser le client ssh pour vous connecter a
- distance sur d'autres machines a partir de celle-ci, et que vous ne
- voulez pas vous logguer sur cette machine a distance via ssh, alors vous
- pouvez d=E9sactiver sshd maintenant.
diff --git a/debian/templates.da b/debian/templates.da
new file mode 100644
index 000000000..c17c60039
--- /dev/null
+++ b/debian/templates.da
@@ -0,0 +1,157 @@
+Template: ssh/protocol2_only
+Type: boolean
+Default: true
+Description: Allow SSH protocol 2 only
+ This version of OpenSSH supports version 2 of the ssh protocol, which is
+ much more secure.  Disabling ssh 1 is encouraged, however this will slow
+ things down on low end machines and might prevent older clients from
+ connecting.
+ .
+ Also please note that keys used for protocol 1 are different so you will
+ not be able to use them if you only allow protocol 2 connections.
+Description-da: Tillad kun SSH protokol 2
+ Denne udgave af OpenSSH underst�tter version 2 af ssh-protokollen, som er
+ betydeligt mere sikker. Det anbefales af deaktivere version 1. Dog kan det
+ sl�ve langsomme maskiner, og forhindre �ldre klienter i at opn� forbindelse.
+Template: ssh/ssh2_keys_merged
+Type: note
+Description: ssh2 keys merged in configuration files
+ As of version 3 OpenSSH no longer uses seperate files for ssh1 and ssh2
+ keys. This means the authorized_keys2 and known_hosts2 files are no longer
+ needed. They will still be read in order to maintain backwards
+ compatibility
+Description-da: ssh2-n�gler flettet i ops�tningsfilerne
+ Siden version 3 har OpenSSH ikke l�ngere separate filer for ssh1- og
+ ssh2-n�gler. Det betyder, at filerne authorized_keys2 og known_hosts2 ikke
+ l�ngere er n�dvendige. De vil stadig dog stadig blive l�st for
+ bagudkompatilitetens skyld.
+Template: ssh/use_old_init_script
+Type: boolean
+Default: false
+Description: Do you want to continue (and risk killing active ssh sessions) ?
+ The version of /etc/init.d/ssh that you have installed, is likely to kill
+ all running sshd instances.  If you are doing this upgrade via an ssh
+ session, that would be a Bad Thing(tm).
+ .
+ You can fix this by adding "--pidfile /var/run/sshd.pid" to the
+ start-stop-daemon line in the stop section of the file.
+Description-da: Vil du forts�tte (og risikere at afbryde aktive ssh-forbindelser)?
+ Den udgave af /etc/init.d/ssh, du har installeret, vil sandsynligvis afbryde
+ alle sshd-d�moner. Det vil v�re en rigtigt d�rlig id�, hvis du er ved at
+ opgradering via en ssh-forbindelse.
+ .
+ Du kan afhj�lpe dette ved at tilf�je "--pidfile /var/run/sshd.pid" til
+ 'start-stop-daemon'-linjen i stop-afsnittet af filen.
+Template: ssh/forward_warning
+Type: note
+Description: NOTE: Forwarding of X11 and Authorization disabled by default.
+ For security reasons, the Debian version of ssh has ForwardX11 and
+ ForwardAgent set to ``off'' by default.
+ .
+ You can enable it for servers you trust, either in one of the
+ configuration files, or with the -X command line option.
+ .
+ More details can be found in /usr/share/doc/ssh/README.Debian
+Description-da: BEM�RK: Videregivelse af X11 og adgangkontrol er som standard deaktiveret.
+ Af sikkerhedsgrunde har Debianudgaven af ssh sat ForwardX11 og ForwardAgent
+ til 'off' som standard.
+ .
+ Du kan aktivere dem for servere, du stoler p� i en af ops�tningsfilerne
+ eller med kommandolinjetilvalget '-X'.
+Template: ssh/insecure_rshd
+Type: note
+Description: Warning: rsh-server is installed --- probably not a good idea
+ having rsh-server installed undermines the security that you were probably
+ wanting to obtain by installing ssh.  I'd advise you to remove that
+ package.
+Description-da: Advarsel: rsh-serveren er installeret --- sikkert ikke en god id�
+ Den sikkerhed, du nok �nskede at opn� ved at installere ssh undermineres
+ ved, at du har rsh-server installeret. Jeg vil r�de dig til at fjerne
+ pakken rsh-server.
+Template: ssh/insecure_telnetd
+Type: note
+Description: Warning: telnetd is installed --- probably not a good idea
+ I'd advise you to either remove the telnetd package (if you don't actually
+ need to offer telnet access) or install telnetd-ssl so that there is at
+ least some chance that telnet sessions will not be sending unencrypted
+ login/password and session information over the network.
+Description-da: Advarsel: telnetd er installeret --- sikkert ikke en god id�
+ Jeg vil r�de dig til enten at fjerne pakken telnetd (hvis du i virkeligheden
+ ikke har brug for at tilbyde telnet-adgang) eller installere telnetd-ssl, s�
+ der i det mindste er en mulighed for, at telnet-sessioner ikke sender
+ adgangskoder og sessions-oplysninger ukrypteret over netv�rket.
+Template: ssh/encrypted_host_key_but_no_keygen
+Type: note
+Description: Warning: you must create a new host key
+ There is an old /etc/ssh/ssh_host_key, which is IDEA encrypted. OpenSSH
+ can not handle this host key file, and I can't find the ssh-keygen utility
+ from the old (non-free) SSH installation.
+ .
+ You will need to generate a new host key.
+Description-da: Advarsel: du skal oprette en ny v�rtsn�gle
+ Der ligger en gammel, IDEA-krypteret /etc/ssh/ssh_host_key. OpenSSH kan
+ ikke h�ndtere s�dan en v�rtsn�glefil, og jeg kan ikke finde v�rkt�jet
+ ssh-keygen fra den gamle (ikke-frie, 'non-free') SSH-installation.
+Template: ssh/SUID_client
+Type: boolean
+Default: false
+Description: Do you want /usr/bin/ssh to be installed SUID root?
+ You have the option of installing the ssh client with the SUID bit set.
+ .
+ If you make ssh SUID, you will be able to use Rhosts/RhostsRSA
+ authentication, but will not be able to use socks via the LD_PRELOAD
+ trick.  This is the traditional approach.
+ .
+ If you do not make ssh SUID, you will be able to use socks, but
+ Rhosts/RhostsRSA authentication will stop working, which may stop you
+ logging in to remote systems.  It will also mean that the source port will
+ be above 1024, which may confound firewall rules you've set up.
+ .
+ If in doubt, I suggest you install it with SUID.  If it causes problems
+ you can change your mind later by running:   dpkg-reconfigure ssh 
+Description-da: Vil du have, at /usr/bin/ssh bliver installeret 'SUID root'?
+ Du har mulighed for at installere ssh-klienten med SUID-flaget sat.
+ .
+ Hvis du g�r ssh SUID, vil du kunne bruge adgangskontrollen
+ Rhosts/RhostsRSA, men vil ikke kunne bruge socks med LD_PRELOAD-tricket.
+ Det vil v�re den almindelige fremgangsm�de.
+ .
+ Hvis du ikke g�r ssh SUID, vil du kunne bruge socks, men adgangskontrol
+ med Rhosts/RhostRSA vil holde op med at virke, hvilket kan forhindre dig
+ i at logge ind p� fjerne systemer. Det vil ogs� betyde, at kildeporten
+ vil ligge over 1024, hvilket kan kollidere med eventuelle brandmure, du
+ har sat op.
+ .
+ Hvis du er i tvivl, foresl�r jeg, at du installerer den med SUID. Hvis det
+ giver problemer, kan du senere ombestemme dig ved at k�re:
+ 'dpkg-reconfigure ssh'.
+Template: ssh/run_sshd
+Type: boolean
+Default: true
+Description: Do you want to run the sshd server ?
+ This package contains both the ssh client, and the sshd server.
+ .
+ Normally the sshd Secure Shell Server will be run to allow remote logins
+ via ssh.
+ .
+ If you are only interested in using the ssh client for outbound
+ connections on this machine, and don't want to log into it at all using
+ ssh, then you can disable sshd here.
+Description-da: Vil du k�re sshd-serveren?
+ Denne pakke indeholder b�de ssh-klienten og sshd-serveren.
+ .
+ Normalt vil sshd sikker skalserver ('Secure Shell Server') blive aktiveret
+ og tillade fjerne brugere i at logge p� via ssh.
+ .
+ Hvis du udelukkende er interesseret i at bruge ssh-klienten til udg�ende
+ forbindelser fra denne maskine, og ikke �nsker at tilg� denne maskine
+ udefra via ssh, kan du nu deaktivere sshd.
diff --git a/debian/templates.de b/debian/templates.de
new file mode 100644
index 000000000..5feb24cd9
--- /dev/null
+++ b/debian/templates.de
@@ -0,0 +1,95 @@
+Template: ssh/use_old_init_script
+Type: boolean
+Default: false
+Description: Do you want to continue (and risk killing active ssh sessions) ?
+ The version of /etc/init.d/ssh that you have installed, is likely to kill
+ all running sshd instances.  If you are doing this upgrade via an ssh
+ session, that would be a Bad Thing(tm).
+ .
+ You can fix this by adding "--pidfile /var/run/sshd.pid" to the
+ start-stop-daemon line in the stop section of the file.
+Description-de: Wollen Sie weitermachen (und das Killen der Session riskieren)?
+ Die Version von /etc/init.d/ssh, die Sie installiert haben, wird 
+ vermutlich Ihre aktiven ssh-Instanzen killen. Wenn Sie das Upgrade
+ via ssh erledigen, dann ist das ein Problem.
+ .
+ Sie k�nnen das Problem beheben, indem sie "--pidfile /var/run/sshd.pid"
+ an die start-stop-daemon Zeile in dem Bereich stop der Datei 
+ /etc/init.d/ssh erg�nzen.
+Template: ssh/forward_warning
+Type: note
+Description: NOTE: Forwarding of X11 and Authorization disabled by default.
+ For security reasons, the Debian version of ssh has ForwardX11 and
+ ForwardAgent set to ``off'' by default.
+ .
+ You can enable it for servers you trust, either
+ in one of the configuration files, or with the -X command line option.
+ .
+ More details can be found in /usr/share/doc/ssh/README.Debian
+Description-de: HINWEIS: Forwarden von X11 und Authorisierung ist abgeschaltet.
+ Aus Sicherheitsgr�nden sind die Debian Pakete von ssh ForwardX11 und
+ ForwardAgent auf "off" gesetzt.
+ .
+ Sie k�nnen dies f�r Server, denen Sie trauen, entweder per Eintrag in
+ die Konfigurations Dateien oder per Kommando-Zeilen Option -X �ndern.
+ .
+ Weitere Details koennen Sie in /usr/share/doc/ssh/README.Debian finden.
+Template: ssh/insecure_rshd
+Type: note
+Description: Warning: rsh-server is installed --- probably not a good idea
+ having rsh-server installed undermines the security that you were probably
+ wanting to obtain by installing ssh.  I'd advise you to remove that package.
+Description-de: Warnung: rsh-server ist installiert --- m�glicherweise
+ ist es eine schlechte Idee, den rsh-server installiert zu haben, da er 
+ die Sicherheit untergr�bt. Wir empfehlen, das Paket zu entfernen.
+Template: ssh/insecure_telnetd
+Type: note
+Description: Warning: telnetd is installed --- probably not a good idea
+ I'd advise you to either remove the telnetd package (if you don't actually
+ need to offer telnet access) or install telnetd-ssl so that there is at
+ least some chance that telnet sessions will not be sending unencrypted
+ login/password and session information over the network.
+Description-de: Warnung: telnetd ist installiert --- schlechte Idee
+ Wir empfehlen das telnetd Paket zu entfernen (falls Sie keinen telnet Zugang
+ anbieten) oder telnetd-ssl zu installieren, so da� Sie verhindern k�nnen,
+ da� Login und Password unverschl�sselt durch das Netz gesendet
+ werden.
+Template: ssh/encrypted_host_key_but_no_keygen
+Type: note
+Description: Warning: you must create a new host key
+ There is an old /etc/ssh/ssh_host_key, which is IDEA encrypted.
+ OpenSSH can not handle this host key file, and I can't find the
+ ssh-keygen utility from the old (non-free) SSH installation.
+ .
+ You will need to generate a new host key.
+Description-de: Warnung: Sie m�ssen einen neuen Host Key erzeugen
+ Es existiert eine alte Variante von /etc/ssh/ssh_host_key welche
+ per IDEA verschl�sselt ist. OpenSSH kann eine solche Host Key Datei
+ nicht lesen und ssh-keygen von der alten (nicht-freien) ssh Installation
+ kann nicht gefunden werden.
+Template: ssh/run_sshd
+Type: boolean
+Default: true
+Description: Do you want to run the sshd server ?
+ This package contains both the ssh client, and the sshd server.
+ .
+ Normally the sshd Secure Shell Server will be run to allow remote
+ logins via ssh.
+ .
+ If you are only interested in using the ssh client for outbound
+ connections on this machine, and don't want to log into it at all
+ using ssh, then you can disable sshd here.
+Description-de: M�chten Sie den sshd Server starten?
+ Das Paket enth�lt sowohl den Client als auch den sshd Server.
+ .
+ Normal wird der sshd Secure Shell Server f�r Remote Logins per ssh
+ gestartet.
+ .
+ Wenn Sie nur den ssh client nutzen wollen, um sich mit anderen Rechnern
+ zu verbinden und sich nicht per ssh in diesen Computer einloggen wollen, 
+ dann k�nnen Sie hier den sshd abschalten.
diff --git a/debian/templates.es b/debian/templates.es
new file mode 100644
index 000000000..c3cc971ca
--- /dev/null
+++ b/debian/templates.es
@@ -0,0 +1,207 @@
+Template: ssh/new_config
+Type: boolean
+Default: true
+Description: Generate new configuration file
+ This version of OpenSSH has a considerably changed configuration file from
+ the version shipped in Debian 'Potato', which you appear to be upgrading
+ from. I can now generate you a new configuration file
+ (/etc/ssh/sshd.config), which will work with the new server version, but
+ will not contain any customisations you made with the old version. 
+ .
+ Please note that this new configuration file will set the value of
+ 'PermitRootLogin' to yes (meaning that anyone knowing the root password
+ can ssh directly in as root). It is the opinion of the maintainer that
+ this is the correct default (see README.Debian for more details), but you
+ can always edit sshd_config and set it to no if you wish.
+ .
+ It is strongly recommended that you let me generate a new configuration
+ file for you 
+Description-es: Generar un fichero de configuraci�n nuevo
+ Esta versi�n de OpenSSH tiene un fichero de configuraci�n muy distinto del
+ que inclu�a la versi�n de 'Potato'. Parece que est� actualizando desde esa
+ versi�n, por lo que puede generar un nuevo fichero de configuraci�n
+ (/etc/ssh/sshd.config), que funcionar� con la nueva versi�n del servidor,
+ pero no tendr� ninguno de los cambios que hubiera hecho a la versi�n
+ antigua.
+ .
+ Debe saber que este nuevo fichero de configuraci�n pondr� el valor de
+ 'PermitRootLogin' a "yes" (por lo que root podr� entrar directamente por
+ ssh). El mantenedor opina que �sta es la opci�n por defecto m�s adecuada
+ (consulte README.Debian para conocer m�s detalles), pero recuerde que
+ siempre puede editar sshd_config y cambiarlo.
+ .
+ Es muy recomendable generar ahora autom�ticamente un nuevo fichero de
+ configuraci�n.
+Template: ssh/protocol2_only
+Type: boolean
+Default: true
+Description: Allow SSH protocol 2 only
+ This version of OpenSSH supports version 2 of the ssh protocol, which is
+ much more secure.  Disabling ssh 1 is encouraged, however this will slow
+ things down on low end machines and might prevent older clients from
+ connecting (the ssh client shipped with "potato" is affected).
+ .
+ Also please note that keys used for protocol 1 are different so you will
+ not be able to use them if you only allow protocol 2 connections.
+ .
+ If you later change your mind about this setting, README.Debian has
+ instructions on what to do to your sshd_config file.
+Description-es: Permitir s�lo la versi�n 2 del protocolo SSH
+ Esta versi�n de OpenSSH soporta la versi�n 2 del protocolo ssh, que es
+ mucho m�s segura que la anterior. Se recomienda no usar ssh versi�n 1,
+ aunque ir� m�s lento en m�quinas modestas y puede impedir que se conecten
+ clientes antiguos, como por ejemplo el cliente de ssh incluido en
+ "potato".
+ .
+ Tambi�n tenga en cuenta que las claves utilizadas para el protocolo 1 son
+ diferentes, por lo que no podr� usarlas si �nicamente permite conexiones
+ mediante el protocolo 2.
+ .
+ Si cambia de opini�n m�s tarde, el fichero README.Debian contiene
+ instrucciones sobre qu� ha de cambiar en el fichero sshd_config.
+Template: ssh/ssh2_keys_merged
+Type: note
+Description: ssh2 keys merged in configuration files
+ As of version 3 OpenSSH no longer uses separate files for ssh1 and ssh2
+ keys. This means the authorized_keys2 and known_hosts2 files are no longer
+ needed. They will still be read in order to maintain backwards
+ compatibility
+Description-es: Las claves ssh2 ya se incluyen en los ficheros de configuraci�n
+ A partir de la versi�n 3, OpenSSH ya no utiliza ficheros diferentes para
+ las claves ssh1 y ssh2. Esto quiere decir que ya no son necesarios los
+ ficheros authorized_keys2 y known_hosts2, aunque a�n se seguir�n leyendo
+ para mantener compatibilidad hacia atr�s.
+Template: ssh/use_old_init_script
+Type: boolean
+Default: false
+Description: Do you want to continue (and risk killing active ssh sessions) ?
+ The version of /etc/init.d/ssh that you have installed, is likely to kill
+ all running sshd instances.  If you are doing this upgrade via an ssh
+ session, that would be a Bad Thing(tm).
+ .
+ You can fix this by adding "--pidfile /var/run/sshd.pid" to the
+ start-stop-daemon line in the stop section of the file.
+Description-es: �Desea continuar, a�n a riesgo de matar todas las sesiones ssh?
+ La versi�n de /etc/init.d/ssh que tiene instalada, es muy probable que
+ mate el demonio ssh. Si est� actualizando mediante una sesi�n ssh, puede
+ no ser muy buena idea.
+ .
+ Puede arreglarlo a�adiendo "--pidfile /var/run/sshd.pid" a la l�nea
+ 'start-stop-daemon' en la secci�n 'stop' del fichero.
+Template: ssh/forward_warning
+Type: note
+Description: NOTE: Forwarding of X11 and Authorization disabled by default.
+ For security reasons, the Debian version of ssh has ForwardX11 and
+ ForwardAgent set to ``off'' by default.
+ .
+ You can enable it for servers you trust, either in one of the
+ configuration files, or with the -X command line option.
+ .
+ More details can be found in /usr/share/doc/ssh/README.Debian
+Description-es: NOTA: Reenv�o de X11 y Autorizaci�n desactivadas por defecto.
+ Por razones de seguridad, la versi�n de ssh de Debian tiene por defecto
+ ForwardX11 y ForwardAgent puestas a ``off''.
+ .
+ Puede activar estas opciones para los servidores en los que conf�e, en
+ los ficheros de configuraci�n o con la opci�n -X en l�nea de comandos.
+ .
+ Puede encontrar m�s detalles en /usr/share/doc/ssh/README.Debian.
+Template: ssh/insecure_rshd
+Type: note
+Description: Warning: rsh-server is installed --- probably not a good idea
+ having rsh-server installed undermines the security that you were probably
+ wanting to obtain by installing ssh.  I'd advise you to remove that
+ package.
+Description-es: Aviso: tiene rsh-server instalado (no es una buena idea)
+ Tener rsh-server instalado representa un menoscabo de la seguridad que
+ probablemente desea obtener instalando ssh. Le aconsejar�a borrar ese
+ paquete.
+Template: ssh/insecure_telnetd
+Type: note
+Description: Warning: telnetd is installed --- probably not a good idea
+ I'd advise you to either remove the telnetd package (if you don't actually
+ need to offer telnet access) or install telnetd-ssl so that there is at
+ least some chance that telnet sessions will not be sending unencrypted
+ login/password and session information over the network.
+Description-es: Aviso: tiene telnetd instalado (no es una buena idea)
+ Le aconsejar�a borrar el paquete telnetd si no necesita realmente
+ ofrecer acceso mediante telnet o instalar telnetd-ssl para que las
+ contrase�as, login y dem�s informaci�n de las sesiones telnet no viajen
+ sin cifrar por la red.
+Template: ssh/encrypted_host_key_but_no_keygen
+Type: note
+Description: Warning: you must create a new host key
+ There is an old /etc/ssh/ssh_host_key, which is IDEA encrypted. OpenSSH
+ can not handle this host key file, and I can't find the ssh-keygen utility
+ from the old (non-free) SSH installation.
+ .
+ You will need to generate a new host key.
+Description-es: Aviso: debe crear una nueva clave para su servidor
+ Su sistema tiene un /etc/ssh/ssh_host_key antiguo, que usa cifrado IDEA.
+ OpenSSH no puede manejar este fichero de claves y tampoco se encuentra la
+ utilidad ssh-keygen incluida en el paquete ssh no libre.
+ .
+ Necesitar� generar una nueva clave para su servidor.
+Template: ssh/SUID_client
+Type: boolean
+Default: true
+Description: Do you want /usr/bin/ssh to be installed SUID root?
+ You have the option of installing the ssh client with the SUID bit set.
+ .
+ If you make ssh SUID, you will be able to use Rhosts/RhostsRSA
+ authentication, but will not be able to use socks via the LD_PRELOAD
+ trick.  This is the traditional approach.
+ .
+ If you do not make ssh SUID, you will be able to use socks, but
+ Rhosts/RhostsRSA authentication will stop working, which may stop you
+ logging in to remote systems.  It will also mean that the source port will
+ be above 1024, which may confound firewall rules you've set up.
+ .
+ If in doubt, I suggest you install it with SUID.  If it causes problems
+ you can change your mind later by running:   dpkg-reconfigure ssh 
+Description-es: �Desea hacer que /usr/bin/ssh se ejecute con permisos de root?
+ Tiene la posibilidad de instalar el cliente ssh setuid root.
+ .
+ Instalarlo setuid root le permitir� usar la autentificaci�n
+ Rhosts/RhostsRSA, pero no podr� usar socks mediante el truco de
+ LD_PRELOAD. Tradicionalmente, este ha sido el enfoque m�s habitual.
+ .
+ Si no hace ssh setuid, podr� usar socks pero la autentificaci�n
+ Rhosts/RhostsRSA dejar� de funcionar, lo cual le puede impedir el acceso
+ a sistemas remotos. Tambi�n significar� que el puerto de origen se
+ encontrar� por encima del 1024, lo cual puede confundir a las reglas del
+ cortafuegos que haya configurado.
+ .
+ Si tiene dudas, le sugiero que lo instale sin setuid. Si esto le causa
+ alg�n problema puede cambiar posteriormente la configuraci�n ejecutando:
+ dpkg-reconfigure ssh
+Template: ssh/run_sshd
+Type: boolean
+Default: true
+Description: Do you want to run the sshd server ?
+ This package contains both the ssh client, and the sshd server.
+ .
+ Normally the sshd Secure Shell Server will be run to allow remote logins
+ via ssh.
+ .
+ If you are only interested in using the ssh client for outbound
+ connections on this machine, and don't want to log into it at all using
+ ssh, then you can disable sshd here.
+Description-es: �Quiere ejecutar el servidor sshd?
+ Este paquete contiene el cliente ssh y el servidor sshd.
+ .
+ Generalmente, el servidor de ssh se ejecuta para permitir el acceso
+ mediante ssh.
+ .
+ Si s�lo est� interesado en usar el cliente ssh en conexiones salientes de
+ esta m�quina, y no quiere acceder a ella mediante ssh, entonces puede
+ desactivar sshd.
diff --git a/debian/templates.fr b/debian/templates.fr
new file mode 100644
index 000000000..f23a83ae1
--- /dev/null
+++ b/debian/templates.fr
@@ -0,0 +1,276 @@
+Template: ssh/privsep_tell
+Type: note
+Description: Privilege separation
+ This version of OpenSSH contains the new privilege separation
+ option. This significantly reduces the quantity of code that runs as
+ root, and therefore reduces the impact of security holes in sshd.
+ .
+ Unfortunately, privilege separation interacts badly with PAM. Any
+ PAM session modules that need to run as root (pam_mkhomedir, for
+ example) will fail, and PAM keyboard-interactive authentication 
+ won't work.
+ .
+ Privilege separation is turned on by default, so if you decide you
+ want it turned off, you need to add "UsePrivilegeSeparation no" to
+ /etc/ssh/sshd_config 
+ .
+ NB! If you are running a 2.0 series Linux kernel, then privilege
+ separation will not work at all, and your sshd will fail to start
+ unless you explicity turn privilege separation off.
+Description-fr: La s�paration des privil�ges
+ Cette version d'OpenSSH est livr�e avec la nouvelle option de 
+ s�paration des privil�ges. Cel� r�duit de mani�re signifiante la 
+ quantit� de code s'ex�ctutant en tant que root, et donc r�duit 
+ l'impact des trous de s�curit� dans sshd.
+ .
+ Malheureusement, la s�paration des privil�ges int�ragit mal avec PAM.
+ Tous les modules de session PAM ayant besoin d'�tre ex�cut� en tant que
+ root (pam_mkhomedir, par exemple) ne s'ex�cutera pas, et
+ l'authentification int�ractive au clavier ne fonctionnera pas.
+ .
+ La s�paration des privil�ges est activ�e par d�faut, donc si vous
+ souhaitez la d�sactiver, vous devez ajouter �UsePrivilegeSeparation no� 
+ dans /etc/ssh/sshd_config
+ .
+ NB! Si vous avez un noyau Linux de la s�rie des 2.0, alors la
+ s�paration des privil�ges ne fonctionnera pas, et votre d�mon sshd ne
+ se lancera pas jusqu'� ce que vous d�sactiviez explicitement la
+ s�paration des privil�ges.
+Template: ssh/privsep_ask
+Type: boolean
+Default: true
+Description: Enable Privilege separation
+ This version of OpenSSH contains the new privilege separation
+ option. This significantly reduces the quantity of code that runs as
+ root, and therefore reduces the impact of security holes in sshd.
+ .
+ Unfortunately, privilege separation interacts badly with PAM. Any
+ PAM session modules that need to run as root (pam_mkhomedir, for
+ example) will fail, and PAM keyboard-interactive authentication 
+ won't work.
+ .
+ Since you've opted to have me generate an sshd_config file for you,
+ you can choose whether or not to have Privilege Separation turned on
+ or not. Unless you are running 2.0 (in which case you *must* say no
+ here or your sshd won't start at all) or know you need to use PAM
+ features that won't work with this option, you should say yes here.
+Description-fr: Activation de la s�paration des privil�ges
+ Cette version d'OpenSSH est livr�e avec la nouvelle option de 
+ s�paration des privil�ges. Cel� r�duit de mani�re signifiante la 
+ quantit� de code s'ex�ctutant en tant que root, et donc r�duit 
+ l'impact des trous de s�curit� dans sshd.
+ .
+ Malheureusement, la s�paration des privil�ges int�ragit mal avec PAM.
+ Tous les modules de session PAM ayant besoin d'�tre ex�cut� en tant que
+ root (pam_mkhomedir, par exemple) ne s'ex�cutera pas, et
+ l'authentification int�ractive au clavier ne fonctionnera pas.
+ .
+ Comme vous souhaitez que je g�n�re le fichier de configuration � votre
+ place, vous pouvez choisir d'activer ou non l'option de s�paration des
+ privil�ges. Si vous utilisez un noyau 2.0 (dans ce cas vous *devez*
+ r�pondre non ici ou bien sshd ne se lancera pas) ou bien si vous avez
+ besoin de fonctionnalit�s PAM, cela ne fonctionnera pas avec cette
+ option d'activ�e, dans le cas contraire vous pouvez dire oui.
+Template: ssh/new_config
+Type: boolean
+Default: true
+Description: Generate new configuration file
+ This version of OpenSSH has a considerably changed configuration file from 
+ the version shipped in Debian 'Potato', which you appear to be upgrading from.
+ I can now generate you a new configuration file (/etc/ssh/sshd.config), which
+ will work with the new server version, but will not contain any customisations
+ you made with the old version. 
+ .
+ Please note that this new configuration file will set the value of 
+ 'PermitRootLogin' to yes (meaning that anyone knowing the root password can
+ ssh directly in as root). It is the opinion of the maintainer that this is
+ the correct default (see README.Debian for more details), but you can always
+ edit sshd_config and set it to no if you wish.
+ .
+ It is strongly recommended that you let me generate a new configuration file 
+ for you 
+Description-fr: G�n�ration du fichier de configuration
+ Cette version d'OpenSSH poss�de un fichier de configuration
+ consid�rablement diff�rent de celui fournit avec la Debian 'Potato',
+ qui apparement est la version � partir de laquelle vous effectuez la
+ mise � jour. Je peux g�n�rer pour vous un nouveau fichier de
+ configuration (/etc/ssh/sshd_config), lequel fonctionnera avec la
+ nouvelle version du serveur, mais ne contiendra aucuns des param�trages
+ personnels que vous avaient d�j� fait.
+ .
+ Notez que le nouveau fichier de configuration mettre l'option
+ 'PermitRootLogin' � yes (signifiant que toute personne connaissant le
+ mot de passe root pourra directement se connecter en tant que root).
+ C'est ce que consid�re comme option par d�faut le mainteneur (voir le
+ fichier README.Debian pour plus de d�tails), mais vous pouvez toujours
+ �diter le fichier sshd_config et mettre la valeur � no si vous le
+ souhaitez.
+ .
+ Il est fortement conseill� de me laisser g�n�rer le nouveau fichier de
+ configuration � votre place.
+Template: ssh/protocol2_only
+Type: boolean
+Default: true
+Description: Allow SSH protocol 2 only
+ This version of OpenSSH supports version 2 of the ssh protocol, which
+ is much more secure.  Disabling ssh 1 is encouraged, however this
+ will slow things down on low end machines and might prevent older
+ clients from connecting (the ssh client shipped with "potato" is affected).
+ .
+ Also please note that keys used for protocol 1 are different so you will
+ not be able to use them if you only allow protocol 2 connections.
+ .
+ If you later change your mind about this setting, README.Debian has 
+ instructions on what to do to your sshd_config file.
+Description-fr: Permettre seulement la version 2 du protocole SSH
+ Cette version d'OpenSSH supporte la version 2 du protocole ssh, lequel
+ �tant beaucoup plus s�curis�. D�sactiver ssh 1 est conseill�, sinon
+ cela risque de ralentir les transactions et les machines et cela peut
+ pr�venir de la connexion d'anciens client (le client ssh fournit dans
+ la �potato� est affect�).
+ .
+ De plus, les cl�s utilis�s par la version 1 du protocol sont
+ diff�rentes et vous ne serez donc plus capable de les utiliser si vous
+ n'autoriser seulement que les connexions utilisant la version 2 du
+ protocole.
+ .
+ Si vous changez d'avis ult�rieurement par rapport � ce point de
+ configuration, les instructions sur ce que vous devez modifier dans le
+ fichier sshd_config sont fournies dans le README.Debian.
+Template: ssh/ssh2_keys_merged
+Type: note
+Description: ssh2 keys merged in configuration files
+ As of version 3 OpenSSH no longer uses separate files for ssh1 and
+ ssh2 keys. This means the authorized_keys2 and known_hosts2 files
+ are no longer needed. They will still be read in order to maintain
+ backwards compatibility
+Description-fr: Agr�gation des cl�s ssh2 dans le fichier de configuration
+ �tant donn� que la version 3 d'OpenSSH n'utilise plus de fichiers
+ s�par� pour les cl�s ssh1 et ssh2. Cela signifie que les fichier
+ authorized_key2 et known_hosts2 ne sont plus n�cessaires. Ils sont
+ quand m�me lus afin de concerver une compatibilit� ascendante.
+Template: ssh/use_old_init_script
+Type: boolean
+Default: false
+Description: Do you want to continue (and risk killing active ssh sessions) ?
+ The version of /etc/init.d/ssh that you have installed, is likely to kill
+ all running sshd instances.  If you are doing this upgrade via an ssh
+ session, that would be a Bad Thing(tm).
+ .
+ You can fix this by adding "--pidfile /var/run/sshd.pid" to the
+ start-stop-daemon line in the stop section of the file.
+Description-fr: Voulez vous continuer (et risquer de rompre les sessions ssh actives) ?
+ Il est probable que la version de /etc/init.d/ssh install�e en ce moment
+ tue toutes les instances de sshd lanc�es en ce moment. Si vous faite une
+ mise � jour via ssh, ca serait une Mauvaise Chose(tm).
+ .
+ Vous pouvez corriger /etc/init.d/ssh en ajoutant '--pidfile /var/run/sshd.pid'
+ a la ligne 'start-stop-daemon' dans la section 'stop' du fichier.
+Template: ssh/forward_warning
+Type: note
+Description: NOTE: Forwarding of X11 and Authorization disabled by default.
+ For security reasons, the Debian version of ssh has ForwardX11 and
+ ForwardAgent set to ``off'' by default.
+ .
+ You can enable it for servers you trust, either
+ in one of the configuration files, or with the -X command line option.
+ .
+ More details can be found in /usr/share/doc/ssh/README.Debian
+Description-fr: NOTE: Suivi de session X11 et d'agent d'autorisation d�sactiv�s par d�faut.
+ Pour des raisons de s�curit�, la version Debian de ssh positionne les
+ options ForwardX11 et ForwardAgent a ``Off'' par d�faut.
+ .
+ Vous pouvez activer ces options pour les serveurs en lesquels vous avez
+ confiance, soit dans un des fichiers de configuration, soit avec l'option
+ -X de la ligne de commande.
+ .
+ Plus d'informations sont disponibles dans /usr/share/doc/ssh/README.Debian.
+Template: ssh/insecure_rshd
+Type: note
+Description: Warning: rsh-server is installed --- probably not a good idea
+ having rsh-server installed undermines the security that you were probably
+ wanting to obtain by installing ssh.  I'd advise you to remove that package.
+Description-fr: Attention: le paquet rsh-server est install� --- ce n'est probablement pas une bonne id�e
+ Avoir un serveur rsh install� affaibli la s�curit� que vous vouliez
+ probablement obtenir en installant ssh. Je vous conseillerais de
+ d�installer ce paquet.
+Template: ssh/insecure_telnetd
+Type: note
+Description: Warning: telnetd is installed --- probably not a good idea
+ I'd advise you to either remove the telnetd package (if you don't actually
+ need to offer telnet access) or install telnetd-ssl so that there is at
+ least some chance that telnet sessions will not be sending unencrypted
+ login/password and session information over the network.
+Description-fr: Attention: le paquet telnetd est install� --- ce n'est probablement pas une bonne id�e
+ Je vous conseillerais de, soit enlever le paquet telnetd (si ce service
+ n'est pas n�cessaire), soit de le remplacer par le paquet telnetd-ssl
+ pour qu'il y ait au moins une chance que les sessions telnet soient
+ encrypt�es et que les mot de passes et logins ne passent pas en clair sur
+ le r�seau.
+Template: ssh/encrypted_host_key_but_no_keygen
+Type: note
+Description: Warning: you must create a new host key
+ There is an old /etc/ssh/ssh_host_key, which is IDEA encrypted.
+ OpenSSH can not handle this host key file, and I can't find the
+ ssh-keygen utility from the old (non-free) SSH installation.
+ .
+ You will need to generate a new host key.
+Description-fr: Attention: vous devez cr�er une nouvelle cl� d'h�te
+ Il existe un vieux /etc/ssh/ssh_host_key qui est encrypt� avec IDEA.
+ OpenSSH ne peut utiliser ce fichier de cl�, et je ne peux trouver
+ l'utilitaire ssh-keygen de l'installation pr�c�dente (non libre) de SSH.
+Template: ssh/SUID_client
+Type: boolean
+Default: true
+Description: Do you want /usr/lib/ssh-keysign to be installed SUID root?
+ You have the option of installing the ssh-keysign helper with the SUID
+ bit set.
+ .
+ If you make ssh-keysign SUID, you will be able to use SSH's Protocol 2
+ host-based authentication.
+ .
+ If in doubt, I suggest you install it with SUID.  If it causes
+ problems you can change your mind later by running:   dpkg-reconfigure ssh 
+Description-fr: Souhaitez-vous que /usr/lib/ssh-keysign soit install� avec le bit SETUID root d'activ� ?
+ Vous avez la possibilit� d'installer ssh-keysign avec le bit SETIUD
+ d'activ�.
+ .
+ Si vous mettez ssh�keysign avec le bit SETUID, vous permettrez
+ l'authentification bas� sur les h�tes de la version 2 du protocole ssh.
+ .
+ Dans le doute, je vous sugg�re de l'installer avec le bit SETUID
+ d'activ�. Si cela vous cause des probl�mes vous pourrez revenir sur
+ votre d�sicion: dpkg-reconfigure ssh
+Template: ssh/run_sshd
+Type: boolean
+Default: true
+Description: Do you want to run the sshd server ?
+ This package contains both the ssh client, and the sshd server.
+ .
+ Normally the sshd Secure Shell Server will be run to allow remote
+ logins via ssh.
+ .
+ If you are only interested in using the ssh client for outbound
+ connections on this machine, and don't want to log into it at all
+ using ssh, then you can disable sshd here.
+Description-fr: Voulez vous utiliser le serveur sshd ?
+ Ce paquet contient a la fois le client ssh et le serveur sshd.
+ .
+ Normalement le serveur sshd sera lanc� pour permettre les logins distants
+ via ssh.
+ .
+ Si vous d�sirez seulement utiliser le client ssh pour vous connecter a
+ distance sur d'autres machines a partir de celle-ci, et que vous ne
+ voulez pas vous logguer sur cette machine a distance via ssh, alors vous
+ pouvez d�sactiver sshd maintenant.
diff --git a/debian/templates.ja b/debian/templates.ja
new file mode 100644
index 000000000..cdcc829cc
--- /dev/null
+++ b/debian/templates.ja
@@ -0,0 +1,205 @@
+Template: ssh/new_config
+Type: boolean
+Default: true
+Description: Generate new configuration file
+ This version of OpenSSH has a considerably changed configuration file from 
+ the version shipped in Debian 'Potato', which you appear to be upgrading from.
+ I can now generate you a new configuration file (/etc/ssh/sshd.config), which
+ will work with the new server version, but will not contain any customisations
+ you made with the old version. 
+ .
+ Please note that this new configuration file will set the value of 
+ 'PermitRootLogin' to yes (meaning that anyone knowing the root password can
+ ssh directly in as root). It is the opinion of the maintainer that this is
+ the correct default (see README.Debian for more details), but you can always
+ edit sshd_config and set it to no if you wish.
+ .
+ It is strongly recommended that you let me generate a new configuration file 
+ for you 
+Description-ja: ����������ե��������ޤ�
+ OpenSSH �Τ��ΥС������ϡ�Debian 'Potato' �˴ޤޤ�Ƥ���С������
+ (���ޡ����ΥС�����󤫤�ΥС�����󥢥åפ��ߤƤ���Ȥ���) ���顢
+ ����ե����뤬�������Ѳ����Ƥ��ޤ������ޡ��������С������Υ����Ф�
+ �Ȥ����Ȥ��Ǥ��뿷��������ե����� (/etc/ssh/sshd/config) ��ư����
+ ���뤳�Ȥ��Ǥ��ޤ��������Υե�����ϡ��Ť��С�����������ե������
+ �ޤޤ�뤢�ʤ������꤬�����ޤޤ�ޤ���
+ .
+ ���ο���������ե�����ϡ���PermitRootLogin�פ��yes�פ����ꤷ�ޤ���
+ (�Ĥޤꡢroot �Υѥ���ɤ��ΤäƤ���ͤʤ�ï�Ǥ�ľ�ܥ�������Ǥ���
+ ��)������Ǥ褤���Ȥ����Τ����Υѥå������Υ��ƥʤΰո��Ǥ��� (�ܤ�
+ ���� README.Debian ���ɤ�ǲ�����)��sshd_config ���Խ����ơ�no�פ���
+ �ꤹ�뤳�Ȥ�Ǥ��ޤ���
+ .
+ ����������ե������ư�������뤳�Ȥ򶯤������ᤷ�ޤ���
+Template: ssh/protocol2_only
+Type: boolean
+Default: true
+Description: Allow SSH protocol 2 only
+ This version of OpenSSH supports version 2 of the ssh protocol, which
+ is much more secure.  Disabling ssh 1 is encouraged, however this
+ will slow things down on low end machines and might prevent older
+ clients from connecting (the ssh client shipped with "potato" is affected).
+ .
+ Also please note that keys used for protocol 1 are different so you will
+ not be able to use them if you only allow protocol 2 connections.
+ .
+ If you later change your mind about this setting, README.Debian has 
+ instructions on what to do to your sshd_config file.
+Description-ja: SSH �ץ��ȥ��� 2 �Τߤ���Ĥ��ޤ�
+ OpenSSH �Τ��ΥС������ϡ����äȰ����ʡ�ssh �ץ��ȥ���ΥС������
+ 2 �򥵥ݡ��Ȥ��Ƥ��ޤ���ssh 1 ��ػߤ��뤳�Ȥ򤪴��ᤷ�ޤ������٤���
+ ����Ǥ�ư��٤��ʤä��ꡢ�Ť����饤����Ȥ�����³�Ǥ��ʤ��ʤä���
+ ���ޤ� ("potato" �� ssh ���饤����Ȥ���³�Ǥ��ʤ��ʤ�ޤ�)��
+ .
+ �ޤ����ץ��ȥ��� 1 �ǻȤ������ϰۤʤ뤿�ᡢ�ץ��ȥ��� 2 ��ͭ���ˤ���
+ �����ǤϤ��Υ�����Ȥ����Ȥ��Ǥ��ޤ���
+ .
+ �⤷���夢�ʤ����ͤ����Ѥ����顢README.Debian ���ɤ�� sshd_config ��
+ �ɤΤ褦���ѹ�������褤����ʬ����ޤ���
+Template: ssh/ssh2_keys_merged
+Type: note
+Description: ssh2 keys merged in configuration files
+ As of version 3 OpenSSH no longer uses separate files for ssh1 and
+ ssh2 keys. This means the authorized_keys2 and known_hosts2 files
+ are no longer needed. They will still be read in order to maintain
+ backwards compatibility
+Description-ja: ssh2 ����������ե���������礵��ޤ�
+ OpenSSH �ΥС������ 3 �ϡ�ssh1 �� ssh2 �Υ����˸��̤Υե������Ȥ�
+ �ޤ��󡣤Ĥޤꡢauthorized_keys2 �ե������ known_hosts2 �ե�����Ϥ�
+ �Ϥ����פȤʤ�ޤ����������ߴ������ݤĤ���ˤϤ����Υե����뤬ɬ��
+ �Ǥ���
+Template: ssh/use_old_init_script
+Type: boolean
+Default: false
+Description: Do you want to continue (and risk killing active ssh sessions) ?
+ The version of /etc/init.d/ssh that you have installed, is likely to kill
+ all running sshd instances.  If you are doing this upgrade via an ssh
+ session, that would be a Bad Thing(tm).
+ .
+ You can fix this by adding "--pidfile /var/run/sshd.pid" to the
+ start-stop-daemon line in the stop section of the file.
+Description-ja: ³���Ƥ����Ǥ��� (��³��� ssh ���å�����ڤ�뤫�⤷��ޤ���)
+ ���ޥ��󥹥ȡ��뤷�� /etc/init.d/ssh �ϡ������餯�¹���� sshd ������
+ ��ߤ����ޤ������ΥС�����󥢥åפ� ssh ���å������Ѥ��ƹԤ��Τϴ�
+ ��ä���꤫���Ǥ���
+ .
+ ���ξ�����������ˤϡ�/etc/init.d/ssh �� stop ����������
+ start-stop-daemon �ιԤˡ�--pidfile /var/run/sshd.pid�פ��ɲä��ޤ���
+Template: ssh/forward_warning
+Type: note
+Description: NOTE: Forwarding of X11 and Authorization disabled by default.
+ For security reasons, the Debian version of ssh has ForwardX11 and
+ ForwardAgent set to ``off'' by default.
+ .
+ You can enable it for servers you trust, either
+ in one of the configuration files, or with the -X command line option.
+ .
+ More details can be found in /usr/share/doc/ssh/README.Debian
+Description-ja: ����: X11 ��ǧ�ڤΥե���ǥ��󥰤ϥǥե���ȤǤ϶ػߤ���ޤ�
+ �������ƥ������ͳ���顢Debian �� ssh �Ǥ� ForwardX11 ��
+ ForwardAgent �ϥǥե���ȤǤϡ�off�פ����ꤵ��ޤ���
+ .
+ ����ե������Ȥä��ꡢ-X ���ޥ�ɥ饤�󥪥ץ�����Ȥä��ꤹ��
+ ���Ȥǡ����ѤǤ��륵���Ф��Ф��Ƶ��Ĥ��뤳�Ȥ��Ǥ��ޤ���
+ .
+ �ܺ٤� /usr/share/doc/ssh/README.Debian ���ɤ�ǲ�������
+Template: ssh/insecure_rshd
+Type: note
+Description: Warning: rsh-server is installed --- probably not a good idea
+ having rsh-server installed undermines the security that you were probably
+ wanting to obtain by installing ssh.  I'd advise you to remove that package.
+Description-ja: �ٹ�: rsh-server �����󥹥ȡ��뤵��Ƥ��ޤ������֤��ɤ��ͤ��ǤϤ���ޤ���
+ rsh-server �����󥹥ȡ��뤵��Ƥ���ȡ����ʤ��� ssh �ˤ�ä���������
+ �פäƤ���Ǥ������������ƥ���»�ʤ��ޤ������Υѥå������򥢥�
+ �󥹥ȡ��뤹�뤳�Ȥ򤪴��ᤷ�ޤ���
+Template: ssh/insecure_telnetd
+Type: note
+Description: Warning: telnetd is installed --- probably not a good idea
+ I'd advise you to either remove the telnetd package (if you don't actually
+ need to offer telnet access) or install telnetd-ssl so that there is at
+ least some chance that telnet sessions will not be sending unencrypted
+ login/password and session information over the network.
+Description-ja: �ٹ�: telnetd �����󥹥ȡ��뤵��Ƥ��ޤ������֤��ɤ��ͤ��ǤϤ���ޤ���
+ (�⤷ telnet �����������󶡤������ȻפäƤ��ʤ��ΤǤ�����) telnetd
+ �ѥå������򥢥󥤥󥹥ȡ��뤹�뤫���ޤ��ϡ�telnetd-ssh �ѥå�������
+ ���󥹥ȡ��뤷�ƾ��ʤ��Ȥ�ͥåȥ�����Ź沽����Ƥ��ʤ��桼��̾
+ ��ѥ���ɤ䥻�å�������ή��ʤ��褦�ˤ��뤳�Ȥ򤪴��ᤷ�ޤ���
+Template: ssh/encrypted_host_key_but_no_keygen
+Type: note
+Description: Warning: you must create a new host key
+ There is an old /etc/ssh/ssh_host_key, which is IDEA encrypted.
+ OpenSSH can not handle this host key file, and I can't find the
+ ssh-keygen utility from the old (non-free) SSH installation.
+ .
+ You will need to generate a new host key.
+Description-ja: �ٹ�: �������ۥ��ȥ�������ʤ��Ȥ����ޤ���
+ IDEA �ǰŹ沽���줿�Ť������� /etc/ssh/ssh_host_key �ˤ���ޤ���
+ OpenSSH �Ϥ��Υۥ��ȥ����ե�����򰷤��ޤ��󡣤ޤ��������󥹥ȡ���
+ ����Ƥ���Ť� (�ե꡼�ǤϤʤ�) SSH �ˤ� ssh-keygen �桼�ƥ���ƥ�
+ ���ޤޤ�Ƥ��ޤ���
+ .
+ �������ۥ��ȥ�������ɬ�פ�����ޤ���
+Template: ssh/SUID_client
+Type: boolean
+Default: true
+Description: Do you want /usr/bin/ssh to be installed SUID root?
+ You have the option of installing the ssh client with the SUID bit set.
+ .
+ If you make ssh SUID, you will be able to use Rhosts/RhostsRSA
+ authentication, but will not be able to use socks via the LD_PRELOAD
+ trick.  This is the traditional approach.
+ .
+ If you do not make ssh SUID, you will be able to use socks, but
+ Rhosts/RhostsRSA authentication will stop working, which may stop you
+ logging in to remote systems.  It will also mean that the source
+ port will be above 1024, which may confound firewall rules you've set up.
+ .
+ If in doubt, I suggest you install it with SUID.  If it causes
+ problems you can change your mind later by running:   dpkg-reconfigure ssh 
+Description-ja: /usr/bin/ssh �� SUID root �ǥ��󥹥ȡ��뤷�ޤ���?
+ ssh ���饤����Ȥ򥤥󥹥ȡ��뤹��ݡ�SUID �ӥåȤ����ꤹ�뤫���ʤ���
+ �����֤��Ȥ��Ǥ��ޤ���
+ .
+ SUID �����ꤹ��С�Rhosts/RhostsRSA ǧ�ڤ�Ȥ����Ȥ��Ǥ��ޤ�����
+ LD_PRELOAD �ȥ�å����Ѥ��� socks ��Ȥ����Ȥ��Ǥ��ʤ��ʤ�ޤ�������
+ ������Ū�ʤ�꤫���Ǥ���
+ .
+ SUID �����ꤷ�ʤ���С�socks ��Ȥ����Ȥ��Ǥ��ޤ�����Rhosts/RhostRSA
+ ǧ�ڤ�Ư���ʤ��ʤꡢ��⡼�ȥ����ƥ�ؤΥ������󤬤Ǥ��ʤ��ʤ뤫�⤷
+ ��ޤ��󡣤ޤ����������ݡ��Ȥ� 1024 �ʾ�Ȥʤꡢ���ʤ������ꤷ���ե�
+ ������������Υ롼����𤵤��뤫�⤷��ޤ���
+ .
+ �⤷ʬ����ʤ���С�SUID �����ꤷ�����֤ǥ��󥹥ȡ��뤹�뤳�Ȥ򤪴���
+ ���ޤ�������Ǥ⤷�������꤬����С�dpkg-reconfigure ssh ��¹Ԥ��뤳
+ �Ȥ�������ѹ����뤳�Ȥ��Ǥ��ޤ���
+Template: ssh/run_sshd
+Type: boolean
+Default: true
+Description: Do you want to run the sshd server ?
+ This package contains both the ssh client, and the sshd server.
+ .
+ Normally the sshd Secure Shell Server will be run to allow remote
+ logins via ssh.
+ .
+ If you are only interested in using the ssh client for outbound
+ connections on this machine, and don't want to log into it at all
+ using ssh, then you can disable sshd here.
+Description-ja: sshd �����Ф�¹Ԥ��ޤ���?
+ ���Υѥå������ϡ�ssh ���饤����Ȥ� sshd �����Ф�ξ����ޤ�Ǥ��ޤ���
+ .
+ �̾sshd �����奢�����륵���Фϡ�ssh ���Ѥ�����⡼�Ȥ���Υ�������
+ ���ǽ�ˤ��뤿��˼¹Ԥ��ޤ���
+ .
+ �⤷ ssh ���饤����Ȥ�ȤäƤ��Υޥ��󤫤�¾�ޥ���ؤ���³���������
+ �ǡ����Υޥ���ؤ� ssh ��Ȥäƥ������󤷤ʤ��ΤǤ����顢������ sshd
+ ��¹Ԥ��ʤ��Ǥ����ޤ���
diff --git a/debian/templates.pt_BR b/debian/templates.pt_BR
new file mode 100644
index 000000000..2d0b3e1e7
--- /dev/null
+++ b/debian/templates.pt_BR
@@ -0,0 +1,181 @@
+Template: ssh/upgrade_to_openssh
+Type: boolean
+Description: Are you sure you want to upgrade to OpenSSH?
+ This version of ssh (a.k.a. OpenSSH) is supposed to be a 100% compatible
+ drop in replacement for the original (non-free) implemetation.
+ .
+ If you find that it is not, please report the problem as a bug.
+ .
+ You can still find the old version of ssh in the ssh-nonfree package
+ (although the only reason you are likely to want that is if you also
+ want to install the ssh2 package).
+ .
+ NOTE: If you're upgrading a machine remotely, via ssh, make sure you have at
+ least one other ssh session running as root, and once this is installed,
+ check that you can still log in (with a third session), before logging out.
+Description-pt_BR: Voc� tem certeza que quer atualizar para o OpenSSH ?
+ Esta vers�o do ssh (tamb�m conhecida como OpenSSH) � supostamente um
+ substituto 100% compat�vel para a implementa��o original (non-free).
+ .
+ Caso voc� ache que n�o �, por favor reporte o problema como um bug.
+ .
+ Voc� continuar� a encontrar a vers�o antiga do ssh no pacote ssh-nonfree
+ (embora a �nica raz�o pela qual voc� queira isso � se voc� tamb�m quer
+ instalar o pacote ssh2).
+ .
+ NOTA: Se voc� est� atualizando uma m�quina remotamente, via ssh,
+ certifique-se que voc� possui pelo menos outra sess�o ssh executando como
+ root e, uma vez que o pacote esteja instalado, verifique se voc� continua
+ podendo se logar (com uma terceira sess�o) antes de se desconectar
+ (logging out).
+Template: ssh/ancient_version
+Type: note
+Description: You are trying to upgrade from an ancient version of non-free ssh
+ This is bound to be using IDEA encryption for your identity files.
+ You should upgrade to a vaguely contemporary (1.2.15 or later) version of
+ non-free ssh, and then upgrade all your key files using ssh-keygen -u
+ before attempting to migrate to OpenSSH.
+ .
+ Alternatively, you could just forget about that, and generate new keys.
+Description-pt_BR: Voc� est� tentando atualizar a partir de uma vers�o antiga do ssh non-free
+ Isto est� ligado a estar usando encripta��o IDEA para seus arquivos de
+ identidade. Voc� dever� atualizar para uma vers�o vagamente contempor�nea
+ (1.2.15 ou superior) do ssh non-free, e ent�o atualizar todos seus
+ arquivos de chaves usando ssh-keygen -u antes de tentar migrar para
+ OpenSSH.
+ .
+ Alternativamente, voc� poderia somente esquecer tudo isso e gerar
+ novas chaves.
+Template: ssh/use_old_init_script
+Type: boolean
+Description: Do you want to continue (and risk killing active ssh sessions) ?
+ The version of /etc/init.d/ssh that you have installed, is likely to kill
+ all running sshd instances.  If you are doing this upgrade via an ssh
+ session, that would be a Bad Thing(tm).
+ .
+ You can fix this by adding "--pidfile /var/run/sshd.pid" to the
+ start-stop-daemon line in the stop section of the file.
+Description-pt_BR: Voc� quer continuar (e arriscar matar sess�es ssh ativas) ?
+ A vers�o de /etc/init.d/ssh que voc� possui instalada est� prestes a
+ matar todas as inst�ncias sshd sendo executadas. Se voc� est� fazendo
+ esta atualiza��o atrav�s de uma sess�o ssh, isto seria uma Coisa
+ Ruim(tm).
+ .
+ Voc� pode corrigir isto adicionando "--pidfile /var/run/sshd.pid" na
+ linha start-stop-daemon na se��o stop deste arquivo.
+Template: ssh/forward_warning
+Type: note
+Description: NOTE: Forwarding of X11 and Authorization disabled by default.
+ For security reasons, the Debian version of ssh has ForwardX11 and
+ ForwardAgent set to ``off'' by default.
+ .
+ You can enable it for servers you trust, either
+ in one of the configuration files, or with the -X command line option.
+ .
+ More details can be found in /usr/share/doc/ssh/README.Debian
+Description-pt_BR: NOTA: Forwarding de X11 e Authorization desabilitados por padr�o.
+ Por raz�es de seguran�a, a vers�o Debian do ssh tem as op��es ForwardX11
+ e ForwardAgent definidas como ``off'' por padr�o.
+ .
+ Voc� pode habilitar isso para servidores que voc� confia, ou em um dos
+ arquivos de configura��o, ou com a op��o de linha de comando -X.
+ .
+ Maiores detalhes podem ser encontrados em
+ /usr/share/doc/ssh/README.Debian.
+Template: ssh/insecure_rshd
+Type: note
+Description: Warning: rsh-server is installed --- probably not a good idea
+ having rsh-server installed undermines the security that you were probably
+ wanting to obtain by installing ssh.  I'd advise you to remove that package.
+Description-pt_BR: Aviso: rsh-server est� instalado --- provavelmente n�o � uma boa id�ia
+ Possuir o rsh-server instalado minar� a seguran�a que voc� estava
+ provavelmente querendo obter instalando o ssh. Eu recomendaria a voc�
+ remover este pacote.
+Template: ssh/insecure_telnetd
+Type: note
+Description: Warning: telnetd is installed --- probably not a good idea
+ I'd advise you to either remove the telnetd package (if you don't actually
+ need to offer telnet access) or install telnetd-ssl so that there is at
+ least some chance that telnet sessions will not be sending unencrypted
+ login/password and session information over the network.
+Description-pt_BR: Aviso: telnetd est� instalado --- provavelmente n�o � uma boa id�ia
+ Eu recomendaria a voc� ou remover o pacote telnetd (se voc� atualmente
+ n�o precisa oferecer acesso telnet) ou instalar telnetd-ssl. Assim existe
+ pelo menos uma chance das sess�es telnet n�o enviarem login/senha n�o
+ encriptados e informa��es de sess�o atrav�s da rede.
+Template: ssh/encrypted_host_key_but_no_keygen
+Type: note
+Description: Warning: you must create a new host key
+ There is an old /etc/ssh/ssh_host_key, which is IDEA encrypted.
+ OpenSSH can not handle this host key file, and I can't find the
+ ssh-keygen utility from the old (non-free) SSH installation.
+ .
+ You will need to generate a new host key.
+Description-pt_BR: Aviso: voc� deve criar uma nova host key
+ Existe uma antiga /etc/ssh/ssh_host_key, a qual � encriptada usando IDEA.
+ O OpenSSH n�o pode gerenciar este arquivo host key e eu n�o consigo
+ encontrar o utilit�rio ssh-keygen da antiga (non-free) instala��o SSH.
+ .
+ Voc� precisar� gerar uma nova host key.
+Template: ssh/SUID_client
+Type: boolean
+Default: false
+Description: Do you want /usr/bin/ssh to be installed SUID root?
+ You have the option of installing the ssh client with the SUID bit set.
+ .
+ If you make ssh SUID, you will be able to use Rhosts/RhostsRSA
+ authentication, but will not be able to use socks via the LD_PRELOAD
+ trick.  This is the traditional approach.
+ .
+ If you do not make ssh SUID, you will be able to use socks, but
+ Rhosts/RhostsRSA authentication will stop working, which may stop you
+ logging in to remote systems.  It will also mean that the source
+ port will be above 1024, which may confound firewall rules you've set up.
+ .
+ If in doubt, I suggest you install it without SUID.  If it causes
+ problems you can change your mind later by running:   dpkg-reconfigure ssh
+Description-pt_BR: Voc� quer que /usr/bin/ssh seja instalado SUID root ?
+ Voc� tem a op��o de instalar o cliente ssh com o bit SUID setado.
+ .
+ Se voc� fizer o ssh SUID, voc� conseguir� usar autentica��o
+ Rhosts/RhostsRSA, mas n�o ser� capaz de usar socks atrav�s do truque
+ LD_PRELOAD. Isto � o tradicional.
+ .
+ Se voc� n�o fizer o ssh SUID, voc� poder� usar socks, mas a autentica��o
+ Rhosts/RhostsRSA ir� parar de funcionar, o que poder� lhe impedir de
+ logar em sistemas remotos. Isto significar� tamb�m que a porta fonte
+ estar� acima de 1024, o que poder� confundir regras de firewall que voc�
+ tenha definido.
+ .
+ Caso esteja em d�vida, eu sugiro a voc� instalar sem SUID. Se isso causar
+ problemas voc� pode mudar sua escolha posteriormente executando:
+ dpkg-reconfigure ssh.
+Template: ssh/run_sshd
+Type: boolean
+Default: true
+Description: Do you want to run the sshd server ?
+ This package contains both the ssh client, and the sshd server.
+ .
+ Normally the sshd Secure Shell Server will be run to allow remote
+ logins via ssh.
+ .
+ If you are only interested in using the ssh client for outbound
+ connections on this machine, and don't want to log into it at all
+ using ssh, then you can disable sshd here.
+Description-pt_BR: Voc� quer executar o servidor sshd ?
+ Este pacote cont�m ambos o cliente ssh e o servidor sshd.
+ .
+ Normalmente o sshd Secure Shell Server ser� executado para permitir
+ logins remotos via ssh.
+ .
+ Se voc� est� interessado somente em usar o cliente ssh para conex�es
+ para fora desta m�quina, e n�o quer logar na mesma usando ssh, ent�o voc�
+ pode desabilitar o sshd aqui.
diff --git a/debian/templates.ru b/debian/templates.ru
new file mode 100644
index 000000000..39038ff22
--- /dev/null
+++ b/debian/templates.ru
@@ -0,0 +1,207 @@
+Template: ssh/upgrade_to_openssh
+Type: boolean
+Description: Are you sure you want to upgrade to OpenSSH?
+ This version of ssh (a.k.a. OpenSSH) is supposed to be a 100% compatible
+ drop in replacement for the original (non-free) implemetation.
+ .
+ If you find that it is not, please report the problem as a bug.
+ .
+ You can still find the old version of ssh in the ssh-nonfree package
+ (although the only reason you are likely to want that is if you also
+ want to install the ssh2 package).
+ .
+ NOTE: If you're upgrading a machine remotely, via ssh, make sure you have at
+ least one other ssh session running as root, and once this is installed,
+ check that you can still log in (with a third session), before logging out.
+Description-ru: �� �������, ��� ������ �������� OpenSSH?
+ ��� ������ ssh(�� �� OpenSSH) �������� 100%-����������� � ������������
+ (�����������) �����������.
+ .
+ ���� �� ���������� ��������, ��, ����������, �������� �� ���� ������.
+ .
+ ��  ������  ��  ��������  ����� ������ ������ ssh � ������ ssh-nonfree
+ (���� ������������� ���������� ��� ������������ ������, ���� �� ������
+ ���������� ��� � ����� ssh2).
+ .
+ ����������: ���� �� �������� ���������� ������ ����� ssh, �� ���������
+ ���  ���  �������  ���  ���� ������ ssh �������� �� root, � ��� ������
+ �������  ����������  ����������,  ���������,  ���  ��  ������� ����� �
+ ������� (��������� ������ ������), ����� ��� ��� �������������.
+Template: ssh/protocol2_default
+Type: note
+Description: SSH uses protocol 2 by default.
+ This version of SSH (unlike previous ones) uses ssh
+ protocol version 2 by default. The key file formats have changed
+ between the protocol versions, so your old key files will not be
+ useful. You may either pass the '-1' option to ssh to force it to use
+ the older protocol (and your old keys), or generate new keys. Protocol
+ version 2 is thought to be more secure, so this is the preferred
+ course of action. See README.Debian for a little more information
+ .
+ Also, due to problems with IPv4 and IPv6 interoperation, IPv4 is now
+ the default (this is a change from previous versions). Passing ssh the
+ -6 flag will cause IPv6 addresses to be used. Once the current issues
+ with using IPv6 on machines with IPv4 addresses have been solved, the
+ previous default will be restored
+Description-ru: SSH ���������� �� ��������� �������� ������ 2.
+ ���  ������  SSH  (�  �������  ��  ����������) ���������� �� ���������
+ ��������  ������  2.  �  ����  ������  ��������� ������� ������ ������
+ ������,  ��� ��� ���� ������ ����� ������ ������������. �� ������ ����
+ ���������  �����  '-1' ��� ssh, ����� ������������� ������������ �����
+ ������  ������  ���������,  ����  ������������ �����  �����.  ��������
+ ������  2  ����� ����������, � ������� ������������� �� ���������. ��.
+ ����������� � ����� README.Debian.
+ .
+ �����   ��-��  �������  ������������������  IPv4  �  IPv6,  ������  ��
+ ���������  ��  ���������  ������������  IPv4  (� ������� �� ����������
+ ������).  ����� ������������ IPv6, ���� ������ ���� -6. ��� ������ ���
+ ���������  �  ��������������  IPv6  ��  �������  � �������� IPv4 �����
+ ������, �� ������� ��������� �� ��������� ����� �������������.
+Template: ssh/ancient_version
+Type: note
+Description: You are trying to upgrade from an ancient version of non-free ssh
+ This is bound to be using IDEA encryption for your identity files.
+ You should upgrade to a vaguely contemporary (1.2.15 or later) version of
+ non-free ssh, and then upgrade all your key files using ssh-keygen -u
+ before attempting to migrate to OpenSSH.
+ .
+ Alternatively, you could just forget about that, and generate new keys.
+Description-ru: �� ��������� �������� ������� ������ ������������� ssh
+ ���  ����������  ��������������   ����������  IDEA  ���  �����  ������
+ �������������. ������������� �������� ����� ����������� ������ (1.2.15
+ ���  �����  �������) ������������� ssh, � ����� �������� ���� ��������
+ ����� �������� `ssh-keygen -u` ����� �������� ������� �� OpenSSH.
+ .
+ ��� �������, ������ ������ ��� ���� ���� � ������������� ����� �����.
+Template: ssh/use_old_init_script
+Type: boolean
+Description: Do you want to continue (and risk killing active ssh sessions) ?
+ The version of /etc/init.d/ssh that you have installed, is likely to kill
+ all running sshd instances.  If you are doing this upgrade via an ssh
+ session, that would be a Bad Thing(tm).
+ .
+ You can fix this by adding "--pidfile /var/run/sshd.pid" to the
+ start-stop-daemon line in the stop section of the file.
+Description-ru: �� ������ ���������� (������ �������� �������� ssh-����������)?
+ ������  /etc/init.d/ssh,  �������  ��  ��������������, ����� ����� ���
+ ����������  ��������  ssh.  ���� �� ������������� ��� ���������� �����
+ ssh ������, �� ��� ������ ���� (tm).
+ .
+ ��� ����� ��������� ����������� "--pidfile /var/run/sshd.pid" � ������
+ start-stop-daemon � ������� stop ����� �����.
+Template: ssh/forward_warning
+Type: note
+Description: NOTE: Forwarding of X11 and Authorization disabled by default.
+ For security reasons, the Debian version of ssh has ForwardX11 and
+ ForwardAgent set to ``off'' by default.
+ .
+ You can enable it for servers you trust, either
+ in one of the configuration files, or with the -X command line option.
+ .
+ More details can be found in /usr/share/doc/ssh/README.Debian
+Description-ru: ����������: ���������� X11 � Authorization �������� �� ���������.
+ �� �������� ������������, � ������ ��� Debian ssh ����� ForwardX11 �
+ ForwardAgent �������������� � ``off'' �� ���������.
+ .
+ �� ������ ��������� �� ��� ��������, ������� ��������� ���� � ����� ��
+ ����������� ������, ��� ���������� ��������� ������ -X.
+ .
+ ������������� ���������� ����� ����� � /usr/share/doc/ssh/README.Debian
+Template: ssh/insecure_rshd
+Type: note
+Description: Warning: rsh-server is installed --- probably not a good idea
+ having rsh-server installed undermines the security that you were probably
+ wanting to obtain by installing ssh.  I'd advise you to remove that package.
+Description-ru: ��������������: ���������� rsh-server --- ������, �� ����� ������
+ �������������  rsh-server  �������  ������������,  ������� �� ��������
+ ������ �������� ������������ ssh. ������������� ������� ���� �����.
+Template: ssh/insecure_telnetd
+Type: note
+Description: Warning: telnetd is installed --- probably not a good idea
+ I'd advise you to either remove the telnetd package (if you don't actually
+ need to offer telnet access) or install telnetd-ssl so that there is at
+ least some chance that telnet sessions will not be sending unencrypted
+ login/password and session information over the network.
+Description-ru: ��������������: ���������� telnetd --- ������, �� ����� ������
+ � ������������ �� ��� ������� ����� telnetd (���� ��� ������������� ��
+ ����� ������ telnet) ��� ����������  telnet-ssl,  �����  ����� ���� ��
+ �����������  ��  ����������  ��  ����  ���������������  ����� � ������
+ ������������� � ������ ���������� � telnet-�������.
+Template: ssh/encrypted_host_key_but_no_keygen
+Type: note
+Description: Warning: you must create a new host key
+ There is an old /etc/ssh/ssh_host_key, which is IDEA encrypted.
+ OpenSSH can not handle this host key file, and I can't find the
+ ssh-keygen utility from the old (non-free) SSH installation.
+ .
+ You will need to generate a new host key.
+Description-ru: ��������������: �� ������ ������� ����� ���� ������.
+ ���� ������ /etc/ssh/ssh_host_key, ������� ���������� IDEA. OpenSSH ��
+ �����  ��������  �  ����  ������  ������,  �  �  �� ���� ����� ������� 
+ ssh-keygen �� ������ (�����������) ����������� SSH.
+ .
+ ��� ���� ����� ������������� ����� ���� �����.
+Template: ssh/SUID_client
+Type: boolean
+Default: true
+Description: Do you want /usr/bin/ssh to be installed SUID root?
+ You have the option of installing the ssh client with the SUID bit set.
+ .
+ If you make ssh SUID, you will be able to use Rhosts/RhostsRSA
+ authentication, but will not be able to use socks via the LD_PRELOAD
+ trick.  This is the traditional approach.
+ .
+ If you do not make ssh SUID, you will be able to use socks, but
+ Rhosts/RhostsRSA authentication will stop working, which may stop you
+ logging in to remote systems.  It will also mean that the source
+ port will be above 1024, which may confound firewall rules you've set up.
+ .
+ If in doubt, I suggest you install it with SUID.  If it causes
+ problems you can change your mind later by running:   dpkg-reconfigure ssh 
+Description-ru: ������ ���������� /usr/bin/ssh ��� SUID root?
+ ��  ������  �����������  ���������� /usr/bin/ssh � ������������� �����
+ SUID.
+ .
+ ����  ��  �������  ssh SUID, �� �� ������� ������������ ��������������
+ Rhosts/RhostsRSA,  ��  �� ������� ������������ socks ����� LD_PRELOAD.
+ ��� ������������ ���������.
+ .
+ ����  ��  �������� ssh SUID, �� �� ������� ������������ socks, �� ����
+ ��������������  Rhosts/RhostsRSA  �� ����� ��������, ��� ����� �������
+ ����������� ���� ����������� �� ��������� ��������. ����� ��� ��������
+ ��� ����� ������������� ����� ����� ������ 1024, ��� ����� �� ��������
+ ������ ������������� ���� ������ ��������.
+ .
+ ���� �� �� ������, ��� ������, �� ������������� ���������� ��� � �����
+ SUID. ���� �� ����� �����������, �� ��� ��������� ����� ����� ��������
+ ��������: "dpkg-reconfigure ssh".
+Template: ssh/run_sshd
+Type: boolean
+Default: true
+Description: Do you want to run the sshd server ?
+ This package contains both the ssh client, and the sshd server.
+ .
+ Normally the sshd Secure Shell Server will be run to allow remote
+ logins via ssh.
+ .
+ If you are only interested in using the ssh client for outbound
+ connections on this machine, and don't want to log into it at all
+ using ssh, then you can disable sshd here.
+Description-ru: ������ ��������� ������ sshd?
+ ���� ����� �������� � ssh-������, � ssh-������.
+ .
+ ������  sshd  Secure Shell Server  �����������  ��� ���������� ����� �
+ ����������� � ������� ����� ssh.
+ .
+ ����  ���  ����������  ������  ������������� ssh-������� ��� ���������
+ ���������� �  ����  ������, � ��  �� ������ ������� � �� ������� �����
+ ssh, �� �� ������ ������ ��������� sshd.