Am Mon, 29 Dec 2014 20:01:29 +0000
schrieb sebb <[email protected]>:
> On 29 December 2014 at 19:48, Bernd Eckenfels
> <[email protected]> wrote:
> > The download page of apache commons reads like there is supposed to
> > be a KEYS column in the table. But it is now a general link, so I
> > would apply the following changes, if you agree:
>
> I think the reference to the KEYS file needs to come before the
> hashes. We want to encourage sig checking as the primary way to check
> downloads.
>
> But I agree that the text needs some TLC.
Cool, how is this:
<p>
Please <a href="http://www.apache.org/info/verification.html";>verify
the integrity</a>
of downloaded files against the public code signing
<a href="http://www.apache.org/dist/commons/KEYS";>KEYS</a>
used by the Apache Commons developers.
</p>
<p>
The <code>pgp</code> link downloads the OpenPGP compatible signature
from our main site.
The <code>md5</code> link downloads the checksum from the main site.
</p>
Gruss
Bernd
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
