Robert Muir:
> On Fri, Jun 25, 2010 at 5:29 AM, Thomas Koch wrote:
> > But checking the signatures of apache software obviously is meaningless,
> > since
> > apache developers appears to not have their keys in the web-of-trust.
> > From three signature files I had laying around on my hard disc, al
On Fri, Jun 25, 2010 at 5:29 AM, Thomas Koch wrote:
>
> But checking the signatures of apache software obviously is meaningless,
> since
> apache developers appears to not have their keys in the web-of-trust. From
> three signature files I had laying around on my hard disc, all three keys
> had
>
Hi,
I just wanted to package the new HBase version and since I've just recently
read about a malicious software tarball for some Linux IRC server[1], I got
back to the habbit of checking signatures. (Yes, I was lazy recently. I'm
ashamed.)
But checking the signatures of apache software obvious
