Janne Jalkanen wrote: > > > >So you assume that that www.apache.org can not be hacked? What if a > >signing key *IS* in KEYS but not signed by anyone (because the > >developer > >has never attended an Apache key signing event)? > > Which reminds me - if one does not attend an Apache key signing event > (which tend to be in faraway countries, traveling to which usually > means parting with lots of cash), how *does* one get the key signed? > Is there a regional list somewhere?
Not all committers have added themselves to people.apache.org ... ASF Committer Map http://people.apache.org/map.html See other notes about key signing so that you are ready when you do meet someone ... https://svn.apache.org/repos/private/committers/docs/pgp-key-signing.txt -David > Any people near Helsinki, Finland who are willing to have a coffee > and sign my key? ;-) > > /Janne > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
