incubator-general mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Christian Grobmeier <>
Subject Re: KEYS and releases
Date Tue, 28 Jun 2011 09:20:13 GMT
>> we copy a KEYS file into that directory upon succesful VOTE of the release
>> artifacts (which also include the KEYS file).
> Perhaps, but the point we're getting at was explicitly stated by Benson,
> "The goal here is to allow and encourage consumers to independently verify
> signatures.  That calls for KEYS somewhere else than inside the package."

I am sorry to ask it again, but why can't the incubator have a policy
to make people use:
to store their signing key.

Then we have them listed for each projects there:

Was it not meant that way?


To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message