incubator-general mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Janne Jalkanen <>
Subject Key signing practicalities Was: status of PGP support in Maven
Date Wed, 24 Sep 2008 06:36:51 GMT
> So you assume that that can not be hacked? What if a
> signing key *IS* in KEYS but not signed by anyone (because the  
> developer
> has never attended an Apache key signing event)?

Which reminds me - if one does not attend an Apache key signing event  
(which tend to be in faraway countries, traveling to which usually  
means parting with lots of cash), how *does* one get the key signed?   
Is there a regional list somewhere?

Any people near Helsinki, Finland who are willing to have a coffee  
and sign my key? ;-)


To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message