www-infrastructure-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Sam Ruby <ru...@intertwingly.net>
Subject Re: Official code signing certificate
Date Sat, 23 Jun 2012 21:40:59 GMT
On Sat, Jun 23, 2012 at 5:33 PM, William A Rowe Jr <wrowe@rowe-clan.net> wrote:
> If we now have 5-7 projects looking for code signing, I'd suggest it is time
> for Sam as VP infra, or his delegate, to re-approach the Symantec team and
> find out the terms and conditions on their code signing service and the
> cost.  Have a couple infra team members act as admins.  As I may be signing
> objects I would prefer not to also be an admin, but would serve if pressed.

I've already stated that I'm willing to authorize the purchase of an
ASF certificate should we need one.

Meanwhile, I've affirmed what Roy stated previously: the ASF
Infrastructure team will not sign binaries that were not produced
under conditions that they can fully audit or control.

- Sam Ruby

View raw message