> One thing I'd like to see is *every* JAR signed w/ certs under a > single CA, say the Maven one.
Well, we have an ASF CA, which I would trust. Talk with Ben Laurie about
it.
--- Noel
- repo security Steve Loughran
- Re: repo security Brett Porter
- Re: repo security Steve Loughran
- Re: repo security Steve Loughran
- Re: repo security Noel J. Bergman
- Re: repo security Henri Yandell
- Re: repo security Steve Loughran
- Re: repo security Niclas Hedhman
- RE: repo security Tim O'Brien
- Re: repo security Steve Loughran
- Re: repo security Brett Porter
- Re: repo security Brett Porter
