On 12/8/06, Yonik Seeley <[EMAIL PROTECTED]> wrote:
...Could you go through the process of trying to verify the signatures?...
Signatures for both the .tgz and .zip files pass, after importing your key from pgp.mit.edu into my gpg keystore. I have added http://svn.apache.org/repos/asf/incubator/solr/trunk/KEYS.txt to make it easier for people to get our keys, it would be good to add yours there. -Bertrand Example: gpg --verify apache-solr-1.1.0-incubating.tgz.asc apache-solr-1.1.0-incubating.tgz gpg: Signature made Fri Dec 8 04:22:19 2006 CET using DSA key ID 0AFCEE7C gpg: Good signature from "Yonik Seeley <[EMAIL PROTECTED]>" gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. Primary key fingerprint: E404 B4CF 10D8 F153 04F7 651C B83E A82A 0AFC EE7C
