dom/locales/en-US/chrome/security/security.properties@b8a032363ba2 (annotated)
dom/locales/en-US/chrome/security/security.properties
Thu, 22 Jan 2015 13:21:57 +0100
- author
- Michael Schloh von Bennewitz <michael@schloh.com>
- date
- Thu, 22 Jan 2015 13:21:57 +0100
- branch
- TOR_BUG_9701
- changeset 15
- b8a032363ba2
- permissions
- -rw-r--r--
Incorporate requested changes from Mozilla in review:
https://bugzilla.mozilla.org/show_bug.cgi?id=1123480#c6
| michael@0 | 1 | # Mixed Content Blocker |
| michael@0 | 2 | # LOCALIZATION NOTE: "%1$S" is the URI of the blocked mixed content resource |
| michael@0 | 3 | BlockMixedDisplayContent = Blocked loading mixed display content "%1$S" |
| michael@0 | 4 | BlockMixedActiveContent = Blocked loading mixed active content "%1$S" |
| michael@0 | 5 | |
| michael@0 | 6 | # CSP |
| michael@0 | 7 | ReportOnlyCSPIgnored=Report-only CSP policy will be ignored because there are other non-report-only CSP policies applied. |
| michael@0 | 8 | # LOCALIZATION NOTE: Do not translate "X-Content-Security-Policy", "X-Content-Security-Policy-Report-Only", "Content-Security-Policy" or "Content-Security-Policy-Report-Only" |
| michael@0 | 9 | OldCSPHeaderDeprecated=The X-Content-Security-Policy and X-Content-Security-Report-Only headers will be deprecated in the future. Please use the Content-Security-Policy and Content-Security-Report-Only headers with CSP spec compliant syntax instead. |
| michael@0 | 10 | # LOCALIZATION NOTE: Do not translate "X-Content-Security-Policy/Report-Only" or "Content-Security-Policy/Report-Only" |
| michael@0 | 11 | BothCSPHeadersPresent=This site specified both an X-Content-Security-Policy/Report-Only header and a Content-Security-Policy/Report-Only header. The X-Content-Security-Policy/Report-Only header(s) will be ignored. |
| michael@0 | 12 | |
| michael@0 | 13 | # CORS |
| michael@0 | 14 | CrossSiteRequestBlocked=Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at %1$S. This can be fixed by moving the resource to the same domain or enabling CORS. |
| michael@0 | 15 | |
| michael@0 | 16 | # LOCALIZATION NOTE: Do not translate "Strict-Transport-Security" or "HSTS" |
| michael@0 | 17 | InvalidSTSHeaders=The site specified an invalid Strict-Transport-Security header. |
| michael@0 | 18 | InsecurePasswordsPresentOnPage=Password fields present on an insecure (http://) page. This is a security risk that allows user login credentials to be stolen. |
| michael@0 | 19 | InsecureFormActionPasswordsPresent=Password fields present in a form with an insecure (http://) form action. This is a security risk that allows user login credentials to be stolen. |
| michael@0 | 20 | InsecurePasswordsPresentOnIframe=Password fields present on an insecure (http://) iframe. This is a security risk that allows user login credentials to be stolen. |
| michael@0 | 21 | LoadingMixedActiveContent=Loading mixed (insecure) active content on a secure page "%1$S" |
| michael@0 | 22 | LoadingMixedDisplayContent=Loading mixed (insecure) display content on a secure page "%1$S" |
