Author: crossley
Date: Wed Mar 28 23:43:56 2007
New Revision: 523586
URL: http://svn.apache.org/viewvc?view=rev&rev=523586
Log:
Get the KEYS file direct from /dist/
Modified:
forrest/trunk/site-author/content/xdocs/mirrors.html
Modified: forrest/trunk/site-author/content/xdocs/mirrors.html
URL:
http://svn.apache.org/viewvc/forrest/trunk/site-author/content/xdocs/mirrors.html?view=diff&rev=523586&r1=523585&r2=523586
==============================================================================
--- forrest/trunk/site-author/content/xdocs/mirrors.html (original)
+++ forrest/trunk/site-author/content/xdocs/mirrors.html Wed Mar 28 23:43:56
2007
@@ -105,15 +105,15 @@
<p>It is essential that you verify the integrity of the downloaded
files using the PGP and MD5 signatures. MD5 verification ensures the
-file was not corrupted during the download process. PGP verification
+file was not corrupted or tampered with. PGP verification
ensures that the file came from a certain person.</p>
<p>The PGP signatures can be verified using
<a href="http://www.pgpi.org/";>PGP</a> or
<a href="http://www.gnupg.org/";>GPG</a>.
First download the Apache Forrest
-<a href="http://svn.apache.org/repos/asf/forrest/trunk/KEYS";>KEYS</a>
-as well as the <code>asc</code> signature file for the particular
+<a href="http://www.apache.org/dist/forrest/KEYS";>KEYS</a>
+as well as the <code>*.asc</code> signature file for the particular
distribution. It is important that you get these files from the ultimate
trusted source - the main ASF distribution site, rather than from a mirror.
Then verify the signatures using ...</p>
