Thilo Goetz wrote: > On 11/13/2009 04:53, Marshall Schor wrote: >> The release candidate 01 for 2.3.0-incubating is on >> http://people.apache.org/~schor/uima-release-candidates/2.3.0-RC1/ >> >> It has 4 parts: >> >> uimaj - the main uima release >> uima-as - the uima-as add on >> uima-sandbox - the sandbox components being released >> uima-cpp - the C++ release, including several binary builds. >> >> The Release Audit Reports (RAT) are included. >> >> I'll work on posting a test plan to our wiki, probably tomorrow; >> meanwhile, please try it out. >> >> -Marshall > > Marshall, the key you used to sign the release is unsigned. > I thought there was a way to carry over the old signatures? > Or can you maybe sign your new key with the old one? I haven't > done this myself yet. hmmm. I had signed the new key with the old one. I just now checked this using gpg --list-sigs for my key, and it shows (for me) that it is signed with my old key.
The new key is titled Marshall I Schor (Code Signing Key 2) -- note the "2", and the old key is the same name without the "2". How did you determine that my signing key was "unsigned"? -Marshall > > --Thilo > >
