If an existing key has ever been used to sign a release, it should not
be removed from the KEYS file. It's still needed to verify those older
releases. New keys should just be added without removing anything that
was there before.
--
Martin Cooper
2010/5/23 lukaszlen...@apache.org:
Author:
2010/5/23 Martin Cooper mart...@apache.org:
If an existing key has ever been used to sign a release, it should not
be removed from the KEYS file. It's still needed to verify those older
releases. New keys should just be added without removing anything that
was there before.
I didn't know, I
