httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Brian Behlendorf <br...@organic.com>
Subject Re: pgp KEYS
Date Fri, 06 Jun 1997 18:59:10 GMT
On Fri, 6 Jun 1997, Jim Jagielski wrote:
> We should have the KEYS file available within an easy-click's reach
> on the page, for people to be able to pgp check the binary
> builds... Should't we?

I still am somewhat confused by how it's being used.  I admit to not using PGP
on a regular basis, but what is it in the .asc file that shows that it's Randy
who signed it?  And why is a simple md5 hash not sufficient, if what we're
trying to prove is integrity? (i.e. "md5 apache_1.2.0.tar.gz >
apache_1.2.0.tar.gz.md5") 

	Brian

--=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=--
brian@organic.com  www.apache.org  hyperreal.com  http://www.organic.com/JOBS


Mime
View raw message