On Mon, Feb 2, 2009 at 4:49 PM, Niclas Hedhman <[email protected]> wrote:
>> 2. Sign the images... easy enough, but what key should I use, or if I >> use one of my keys, is there a standard place folks make their public >> keys available? > > Well, many public PGP servers are used, such as pgp.mit.edu. More > importantly, they should also be stored in a KEYS file in the root of > the project. More info at http://www.apache.org/dev/release-signing.html Cheers Niclas -- http://www.qi4j.org - New Energy for Java
