-----BEGIN PGP SIGNED MESSAGE----- Andrew McIntyre wrote: > > On Aug 26, 2004, at 1:00 PM, Jan Hlavat� wrote: >> >> Can we have the official committer's PGP keys posted somewhere please? > > You can find my public key at either http://www.pgp.net or > http://pgp.mit.edu
it's a valid and appropriate request to have committers' keys directly associated with the project. i suggest the creation of a derby/code/trunk/KEYS file into which committers can put their extracted ascii-armoured keys. this serves two purposes: all of the committers' keys can be inloaded in a single operation, and the fact that they keys are part of the apache infrastructure adds a small amount of additional verification. while i'm on the subject, would every person who is signing its email please see that its key is uploaded to the servers? canonical servers include pgpkeys.mit.edu and wwwkeys.pgp.com. - -- #ken P-)} Ken Coar, Sanagendamgagwedweinini http://Ken.Coar.Org/ Author, developer, opinionist http://Apache-Server.Com/ "Millennium hand and shrimp!" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iQCVAwUBQTYhBJrNPMCpn3XdAQHIcgP/Uxxl05YeTW9GYWbiFji0Ojyu21j5DJrV 2repNh2NBbq2XtaUzr5Yw+CHI7NwaN0BkKOWwECI8DdmST6iAeK2EdCFZzddSOf4 kDNRYOjPMBbfzx1+JzDCw6mn0RvnNFfp+nZQroJhDbfwobSpfeydE+/zGRIB451a /0amGV2GTes= =9gZP -----END PGP SIGNATURE-----
