• Your recent searches
XML-Xerces
2 results

 view release on metacpan or  search on metacpan

docs/forrest-docs/src/documentation/content/xdocs/download.xml  view on Meta::CPAN 

  <header> 
    <title>Downloading &PROJECT_NAME;</title> 
  </header> 
  <body> 

<section>
<title>Downloading &PROJECT_NAME;</title>
  <section>
<title>Getting the source code</title>
    <p> The most current stable source code for &PROJECT_NAME; can be
    downloaded from <a
    href="http://xml.apache.org/dist/xerces-p/stable/"> here </a>
    </p>
  </section>

  <section>
<title>Verifying the release</title>
    <p> The current &PROJECT_NAME; maintainer, Jason E. Stewart
      (<a
      href="mailto:jasons@apache.org">jasons@apache.org</a>), signs
      every release with his <a
      href="http://www.gnupg.org/">GnuPG</a> public key. This is to
      help you ensure that you are installing only officially
      sanctioned code, from the official maintainer. By downloading
      the source code and signature from one location (<a
      href="http://www.apache.org/info/20010519-hack.html">possibly
      open to attack</a>) and the public key from an official key
      server, you greatly reduce the chance of installing software
      that is dangerous to you.
    </p>

    <section>
<title>Getting the Public key</title>
      <p> You can use any keyserver you wish, such as <a
      href="http://www.keyserver.net/">www.keyserver.net</a>, and
      search for <em>jasons@apache.org</em> or you can get the
      key<a
      href="http://dtype.org:11371/pks/lookup?search=jasons%40apache.org&amp;op=index">
      here </a>.
      </p>
    </section>
    <section>
<title>Using PGP to verify the code</title>
      <ol>
	<li>Add the key to your keyring: <code>
pgpk -a key_file
</code></li>
	<li>Verify the source code file <code>
pgpv XML-Xerces-X.Y.Z XML-Xerces-X.Y.Z.asc
</code></li>
	<li>If you receive any other response than: <em>Good
	    signature</em>, something went wrong, so don't trust the
	    file.
	</li>
      </ol>
    </section>
    <section>
<title>Using GnuPG to verify the code</title>
      <ol>
	<li>Import the key to your keyring: <code>
gpg --import key_file
</code></li>
	<li>Verify the source code file <code>
gpg&nbsp;--verify&nbsp;XML-Xerces-X.Y.Z&nbsp;XML-Xerces-X.Y.Z.asc
</code></li>
	<li>If you receive any other response than: <em>gpg: Good
	signature</em>, something went wrong, so don't trust the
	file. 
	</li>
      </ol>
    </section>
  </section>
</section>
</body>
</document>



( run in 0.664 second using v1.01-cache-2.11-cpan-df04353d9ac )