accumulo-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Adam Fuchs (JIRA)" <j...@apache.org>
Subject [jira] [Created] (ACCUMULO-586) sign jars when building a release
Date Thu, 10 May 2012 18:06:51 GMT
Adam Fuchs created ACCUMULO-586:
-----------------------------------

             Summary: sign jars when building a release
                 Key: ACCUMULO-586
                 URL: https://issues.apache.org/jira/browse/ACCUMULO-586
             Project: Accumulo
          Issue Type: Improvement
            Reporter: Adam Fuchs


As part of the release process we should include the following steps:
1. Generate a new key pair
2. Use it to sign the jars
3. Generate a java security policy file that includes the public key
4. Destroy the private key

This opens up the possibility of using the java security manager to restrict what code can
be loaded and increase the security of Accumulo.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

Mime
View raw message