incubator-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From rdon...@apache.org
Subject svn commit: r609290 - in /incubator/public/trunk: site-author/guides/releasemanagement.xml site-publish/guides/releasemanagement.html
Date Sun, 06 Jan 2008 10:59:26 GMT
Author: rdonkin
Date: Sun Jan  6 02:59:26 2008
New Revision: 609290

URL: http://svn.apache.org/viewvc?rev=609290&view=rev
Log:
Increased emphasis on linking to original KEYS, signatures and sums.

Modified:
    incubator/public/trunk/site-author/guides/releasemanagement.xml
    incubator/public/trunk/site-publish/guides/releasemanagement.html

Modified: incubator/public/trunk/site-author/guides/releasemanagement.xml
URL: http://svn.apache.org/viewvc/incubator/public/trunk/site-author/guides/releasemanagement.xml?rev=609290&r1=609289&r2=609290&view=diff
==============================================================================
--- incubator/public/trunk/site-author/guides/releasemanagement.xml (original)
+++ incubator/public/trunk/site-author/guides/releasemanagement.xml Sun Jan  6 02:59:26 2008
@@ -244,12 +244,15 @@
           <a href='http://www.apache.org/dev/mirrors.html'>differences</a> from
unmirrored
           downloads. 
           In particular, a <a href='http://www.apache.org/dev/release-download-pages.html'>script</a>

-          must be used to direct the download to an appropriate URL. The artifacts 
+          must be used to direct the download to an appropriate URL. 
+          </p><p>
+          The artifacts 
           are downloaded from machines outside Apache control so users must verify them.
-          While the release artifacts (gzipped tar files and zip jar files are
-          the most common artifacts) are mirrored, the checksums and
-          signature files (.asc and .md5 files) are <strong>never</strong>
-          mirrored.
+          While the mirrored release artifacts (gzipped tar files and zip jar files are
+          the most common artifacts) must be used, the mirrored checksums, <code>KEYS</code>

+          and signature files (<code>.asc</code> and <code>.md5</code>
files) must 
+          <strong>never</strong> be used. All links must refer to the original
documents
+          on <code>www.apache.org</code>.
           </p>
         </section>
         <section id='understanding-archiving'><title>Archiving</title>
@@ -359,6 +362,8 @@
           <li>Permissions are group writable and world read-only</li>
           <li>All artifacts have matching checksums and signatures</li>
           <li>Old releases archived</li>
+          <li>Links to <code>KEYS</code>, signature and checksum documents
+          refer to the originals on <code>www.apache.org</code></li>
         </ul>
       </section>
       <section id='distribution-best-practice'><title>Best Practice</title>

Modified: incubator/public/trunk/site-publish/guides/releasemanagement.html
URL: http://svn.apache.org/viewvc/incubator/public/trunk/site-publish/guides/releasemanagement.html?rev=609290&r1=609289&r2=609290&view=diff
==============================================================================
--- incubator/public/trunk/site-publish/guides/releasemanagement.html (original)
+++ incubator/public/trunk/site-publish/guides/releasemanagement.html Sun Jan  6 02:59:26
2008
@@ -810,12 +810,16 @@
           <a href="http://www.apache.org/dev/mirrors.html">differences</a> from
unmirrored
           downloads. 
           In particular, a <a href="http://www.apache.org/dev/release-download-pages.html">script</a>

-          must be used to direct the download to an appropriate URL. The artifacts 
+          must be used to direct the download to an appropriate URL. 
+          </p>
+<p>
+          The artifacts 
           are downloaded from machines outside Apache control so users must verify them.
-          While the release artifacts (gzipped tar files and zip jar files are
-          the most common artifacts) are mirrored, the checksums and
-          signature files (.asc and .md5 files) are <strong>never</strong>
-          mirrored.
+          While the mirrored release artifacts (gzipped tar files and zip jar files are
+          the most common artifacts) must be used, the mirrored checksums, <code>KEYS</code>

+          and signature files (<code>.asc</code> and <code>.md5</code>
files) must 
+          <strong>never</strong> be used. All links must refer to the original
documents
+          on <code>www.apache.org</code>.
           </p>
 </div>
 <h4>
@@ -952,6 +956,8 @@
           <li>Permissions are group writable and world read-only</li>
           <li>All artifacts have matching checksums and signatures</li>
           <li>Old releases archived</li>
+          <li>Links to <code>KEYS</code>, signature and checksum documents
+          refer to the originals on <code>www.apache.org</code></li>
         </ul>
 </div>
 <h3>



---------------------------------------------------------------------
To unsubscribe, e-mail: cvs-unsubscribe@incubator.apache.org
For additional commands, e-mail: cvs-help@incubator.apache.org


Mime
View raw message