On Wed, Dec 18, 2019 at 11:25 AM Gregory Nutt <spudan...@gmail.com> wrote: > > > > I don't think there's a need to sign emails. > > > > We just sign the release tarballs and those signatures go into a .sig > > file that people can download and use to verify the tarballs. > > Thanks... I obviously don't know what I am going. Just following > through Apache checklists as I run across them.
Don't worry. It is a little bit of a labyrinth out there. I'm still learning my way around too. We'll just struggle through until we're experts.
