John Kristoff wrote: > I wouldn't be surprised if the number of people who actually PGP verify > httpd packages could be counted on one hand, but I happen to be one of > them. Just pointing out that Graham Leggett (PGP key id 0x751D7F27) is > listed on the download page as having signed 2.2.14 and indeed has, but > his key is not in the KEYS file. Obviously having it there would be > nice for at least ~5 of us. :-)
To get copies of keys, follow the instructions to verify tarballs here: http://httpd.apache.org/dev/verification.html Which will lead you to the keys file here: http://www.apache.org/dist/httpd/KEYS Alternatively, put "site:httpd.apache.org KEYS" into Google. Regards, Graham --
smime.p7s
Description: S/MIME Cryptographic Signature
