On 14/06/07, Ben Speakmon <[EMAIL PROTECTED]> wrote:
> Let's deal with them after we get things merged (which I'm doing right
> now in fact :) ).
>
> What do we do with the above?
Getting rid of them is only a problem if they were used to sign a release.
If so, we need to resign such releases with valid keys before throwing them
out permanently.
Good point.
However there will be copies of the KEYS files in the dist (and
archive) directories.
One way to deal with this would be to create the KEYS file with all
the entries, and then remove any expired keys that are not used in
current releases. So the key would still be recoverable via SVN and
from the archives.
Just a suggestion.
S
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
