On Thu, Aug 8, 2013 at 12:10 PM, Rich Bowen <[email protected]> wrote:
> On 08/06/2013 10:38 AM, Cory Johns wrote: > >> I think so. We have a rat build passing on Jenkins, and the license >> issues >> are all resolved, Dave has access to people.apache.org to set up the >> directory and upload the file, Dave and I have keys ( >> http://pgp.mit.edu:11371/pks/**lookup?op=vindex&search=** >> 0x56F0526F9BB3CE70<http://pgp.mit.edu:11371/pks/lookup?op=vindex&search=0x56F0526F9BB3CE70>and >> http://pgp.mit.edu:11371/pks/**lookup?op=vindex&search=** >> 0xDB6E071B449C78B1respectively<http://pgp.mit.edu:11371/pks/lookup?op=vindex&search=0xDB6E071B449C78B1respectively> >> **) >> that should be ok for signing (though mine needs a bit of >> building up on the web of trust), and there are no other hurdles that I >> can >> come up with to creating a tarball of the Allura source, signing it, and >> putting it up. >> > > I don't know that I'd ever do a release, but I'm at > http://pgp.mit.edu:11371/pks/**lookup?op=vindex&search=** > 0x5CFD37FACC78C893<http://pgp.mit.edu:11371/pks/lookup?op=vindex&search=0x5CFD37FACC78C893>and > I'm fairly well connected. And it looks like I signed Dave's key in > 2004. Were you at ApacheCon in Las Vegas that year? > > > Ohio Linuxfest I think :) > > > -- > Rich Bowen > [email protected] > Shosholoza > > -- Dave Brondsema Principal Software Engineer - sourceforge.net Dice Holdings, Inc.
