On Tue, Jan 5, 2010 at 3:57 PM, Martin Cooper <mart...@apache.org> wrote: > > You mean the checksums that you download from the same > potentially-corrupted server? Good plan! :-p >
No, I mean the checksums sitting on your own hard drive right next to the rest of the files generated during the release process. I guess I am assuming that he didn't delete the folder where he did the release. If the checksums match his jars, and the checksums on the server, it is improbable that the jars are compromised. -Wes -- Wes Wannemacher Head Engineer, WanTii, Inc. Need Training? Struts, Spring, Maven, Tomcat... Ask me for a quote! --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@struts.apache.org For additional commands, e-mail: dev-h...@struts.apache.org