On 08/06/2013 10:38 AM, Cory Johns wrote:
I think so. We have a rat build passing on Jenkins, and the license issues are all resolved, Dave has access to people.apache.org to set up the directory and upload the file, Dave and I have keys ( http://pgp.mit.edu:11371/pks/lookup?op=vindex&search=0x56F0526F9BB3CE70 and http://pgp.mit.edu:11371/pks/lookup?op=vindex&search=0xDB6E071B449C78B1respectively) that should be ok for signing (though mine needs a bit of building up on the web of trust), and there are no other hurdles that I can come up with to creating a tarball of the Allura source, signing it, and putting it up.
I don't know that I'd ever do a release, but I'm at http://pgp.mit.edu:11371/pks/lookup?op=vindex&search=0x5CFD37FACC78C893 and I'm fairly well connected. And it looks like I signed Dave's key in 2004. Were you at ApacheCon in Las Vegas that year?
-- Rich Bowen [email protected] Shosholoza
