Author: carnold
Date: Mon Jan 25 00:49:43 2010
New Revision: 902685
URL: http://svn.apache.org/viewvc?rev=902685&view=rev
Log:
Bug 48604: Download page does not have link to KEYS file
Modified:
logging/log4j/trunk/src/changes/changes.xml
logging/log4j/trunk/src/site/apt/download.apt
Modified: logging/log4j/trunk/src/changes/changes.xml
URL:
http://svn.apache.org/viewvc/logging/log4j/trunk/src/changes/changes.xml?rev=902685&r1=902684&r2=902685&view=diff
==============================================================================
--- logging/log4j/trunk/src/changes/changes.xml (original)
+++ logging/log4j/trunk/src/changes/changes.xml Mon Jan 25 00:49:43 2010
@@ -93,6 +93,7 @@
<action action="add" issue="48159">Add
LoggingEvent.removeProperty</action>
<action action="add" issue="48187">Typo ("two three goals") in log4j
FAQ</action>
<action action="fix" issue="48531">Unit tests fail for system dates
after 2009-12-31</action>
+ <action action="fix" issue="48604">Download page does not have link to
KEYS file</action>
</release>
Modified: logging/log4j/trunk/src/site/apt/download.apt
URL:
http://svn.apache.org/viewvc/logging/log4j/trunk/src/site/apt/download.apt?rev=902685&r1=902684&r2=902685&view=diff
==============================================================================
--- logging/log4j/trunk/src/site/apt/download.apt (original)
+++ logging/log4j/trunk/src/site/apt/download.apt Mon Jan 25 00:49:43 2010
@@ -35,8 +35,24 @@
| Apache log4j 1.2.15 (zip) |
{{{http://www.apache.org/dyn/closer.cgi/logging/log4j/1.2.15/apache-log4j-1.2.15.zip}
apache-log4j-1.2.15.zip}} |
{{{http://www.apache.org/dist/logging/log4j/1.2.15/apache-log4j-1.2.15.zip.md5}
apache-log4j-1.2.15.zip.md5}} |
{{{http://www.apache.org/dist/logging/log4j/1.2.15/apache-log4j-1.2.15.zip.asc}
apache-log4j-1.2.15.zip.asc}} |
*-------------------------+---------+----------+-----------+
- Please read {{{http://httpd.apache.org/dev/verification.html}Verifying
Apache HTTP Server Releases}}
- for more information on why you should verify our releases.
+ It is essential that you verify the integrity of the downloaded files
using the PGP or MD5 signatures.
+ Please read {{{http://httpd.apache.org/dev/verification.html}Verifying
Apache HTTP Server Releases}} for more
+ information on why you should verify our releases.
+
+ The PGP signatures can be verified using PGP or GPG. First download the
{{{http://www.apache.org/dist/logging/KEYS}KEYS}}
+ as well as the asc signature file for the relevant distribution. Make sure
you get these files from the
+ {{{http://www.apache.org/dist/logging/}main distribution directory}},
rather than from a mirror. Then verify the signatures using
+
+---
+% gpg --import KEYS
+% gpg --verify log4j-1.2.15.tar.gz.asc
+---
+
+ * log4j 1.2.15 is signed by Curt Arnold 2E114322
+
+ Alternatively, you can verify the MD5 signature on the files. A unix
program called md5 or md5sum is included
+ in many unix distributions.
+
* Previous Releases
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
