On Sun, 2006-05-14 at 12:32 -0700, Phil Steitz wrote: > On 5/14/06, robert burrell donkin <[EMAIL PROTECTED]> wrote: > > On Sat, 2006-05-13 at 15:21 -0700, Henri Yandell wrote:# > > > > <snip> > > > > > I feel that we should be using ACL's on > > > the maven repository on minotaur such that only a PMC can release > > > their code onto the maven repository - but there hasn't seemed much > > > interest in trying to do such. > > > > IMHO bit pointless ATM. need to remove shell from the distribution > > machine before changes like this are worthwhile. but definitely worth > > bringing up again in a month or two. > > > > i've been thinking about using subversion to manage distributions. in > > addition to better ACLs, this would allow scripts to be run that could > > verify signatures. > > > > be a good thing to move to henk's system of key management as well. > > What is that system?
many months ago, henk penning presented a system for ASF OpenPGP key management but i can't find a reference right now. with a bit of luck i might be able to catch up with henk at apachecon europe... - robert --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
