Please see this link for details about creating public/private keys for signing Apache releases: http://www.apache.org/dev/release-signing.html
All Woden committers should have keys, in particular those that will be release managers. All ASF software releases should be signed with the release manager's private key. The public key is distributed across the Apache servers (details at the above link) and a web-of-trust should be used by Apache users to verify trust in the public key (details about this at the link too). John Kaputin --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
