You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@commons.apache.org by rd...@apache.org on 2003/09/07 14:54:23 UTC
cvs commit: jakarta-commons/xdocs/releases release.xml
rdonkin 2003/09/07 05:54:22
Modified: xdocs/releases release.xml
Log:
Updated release document to ensure that signatures are armoured and given useful link to signing key page (thanks Noel!)
Revision Changes Path
1.7 +9 -5 jakarta-commons/xdocs/releases/release.xml
Index: release.xml
===================================================================
RCS file: /home/cvs/jakarta-commons/xdocs/releases/release.xml,v
retrieving revision 1.6
retrieving revision 1.7
diff -u -r1.6 -r1.7
--- release.xml 25 Aug 2003 20:24:56 -0000 1.6
+++ release.xml 7 Sep 2003 12:54:22 -0000 1.7
@@ -160,8 +160,12 @@
For example,
<a href='http://www.gnupg.org'>Gnu Privacy Guard</a> on linux:
</p>
+ <p>
+General instructions about signing releases can be found
+<a href='http://nagoya.apache.org/wiki/apachewiki.cgi?SigningReleases'>here</a>.
+ </p>
<pre>
-$ gpg --output commons-foo-1.2-src.tar.gz.asc --detach-sig commons-foo-1.2-src.tar.gz
+$ gpg --armor --output commons-foo-1.2-src.tar.gz.asc --detach-sig commons-foo-1.2-src.tar.gz
You need a passphrase to unlock the secret key for
user: "Robert Burrell Donkin (CODE SIGNING KEY) <rdonkin@apache.org>"
1024-bit DSA key, ID B1313DE2, created 2003-01-15
@@ -171,10 +175,10 @@
named after the original with <code>.asc</code> suffixed.
</p>
<pre>
-$ gpg --output commons-foo-1.2-src.tar.gz.asc --detach-sig commons-foo-1.2-src.tar.gz
-$ gpg --output commons-foo-1.2-src.zip.asc --detach-sig commons-foo-1.2-src.zip
-$ gpg --output commons-foo-1.2.zip.asc --detach-sig commons-foo-1.2.zip
-$ gpg --output commons-foo-1.2.tar.gz.asc --detach-sig commons-foo-1.2.tar.gz
+$ gpg --armor --output commons-foo-1.2-src.tar.gz.asc --detach-sig commons-foo-1.2-src.tar.gz
+$ gpg --armor --output commons-foo-1.2-src.zip.asc --detach-sig commons-foo-1.2-src.zip
+$ gpg --armor --output commons-foo-1.2.zip.asc --detach-sig commons-foo-1.2.zip
+$ gpg --armor --output commons-foo-1.2.tar.gz.asc --detach-sig commons-foo-1.2.tar.gz
</pre>
<p>
If this is the first release you've cut for this component, then the code signing public key