-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Why is the source release digested with SHA1 (I guess)? See http://people.apache.org/builds/incubator/airavata/0.3-incubating/RC1/. The zip and tar use SHA512.
Marlon On 6/4/12 1:19 AM, Suresh Marru wrote: > Discussion thread for vote on airavata 0.3-incubating release candidate 1. > > If you have any questions or feedback or to post results of validating the > release, please reply to this thread. Once you verify the release, please > post your vote to the VOTE thread. > > For reference, the Apache release guide - > http://www.apache.org/dev/release.html > Incubator specific release guidelines - > http://incubator.apache.org/guides/releasemanagement.html > > Some tips to validate the release before you vote: > > * Download the binary version and run the 5 minute or 10 minute tutorial as > described in README and website. > * Download the source files from compressed files and release tag and build > (which includes tests). > * Verify the distributon for the required LICENSE, NOTICE and DISCLAIMER files > * Verify if all the staged files are signed and the signature is verifiable. > * Verify if the signing key in the project's KEYS file is hosted on a public > server > > Thanks for your time in validating the release and voting, > Suresh -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.16 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEcBAEBAgAGBQJPzSiLAAoJEEfVXEODPFIDLHMH/AtbYVdHW368R/wEUtDncCY1 G8/T0fXyXoV2v0/Z/KOklCz9A+nQAJrI+oiPDrHapungCaHXqRtjPDb21o670WFG lscDysD8+wKGlafHBG/6I2n2epM72Px6zMftmUffYlr0p4HBdAR8G5g8/fwKpo38 cDCCAr2i3fFT8pOa7V0aLF0d6l7HFjuQ/aW/aUYNaD1uq+fJiptxVf6SOGZyhjcZ vIXYst7qvDL+zOe+9HgZTtFJs/wYBsAyK2LlWjYB74ulDurGhEnehtdJlS3pHJ15 MVyRUKfVGG/OcCrzBEkOnQFJhs+EzvlS23UPAc40SnDMnGMW5MoXQNd+LvfCtRc= =M+yf -----END PGP SIGNATURE-----
