commons-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Murphy, Thomas H. (Newport News)" <Thomas.Mur...@ngc.com>
Subject RE: httpclient md5 and asc files
Date Thu, 17 Jun 2004 21:24:45 GMT
Interesting!  Thanks for the info.

-----Original Message-----
From: Adrian Sutton [mailto:adrian.sutton@ephox.com] 
Sent: Thursday, June 17, 2004 4:46 PM
To: Jakarta Commons Users List
Subject: RE: httpclient md5 and asc files


>I suppose "verifiability" is a pipe dream.  Even if 2.0 were signed, I
don't
>know you or any of the would-be signers of HttpClient or other Apache
>products anyway.  Heck, how do I know mighty www.apache.org isn't
hosted in
><insert-questionable-locale-here>?

Just for the record, infrastructure seems to be working on setting up a
certificate authority server and I imagine having a verifiable chain of
trust down to the person signing releases is one of the things that will
be used for.  I have no idea what the timeline is for implementing that
though.

Regards,

Adrian Sutton.


---------------------------------------------------------------------
To unsubscribe, e-mail: commons-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: commons-user-help@jakarta.apache.org

---------------------------------------------------------------------
To unsubscribe, e-mail: commons-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: commons-user-help@jakarta.apache.org


Mime
View raw message