THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
...
- Open a shell window. If using Windows, open a cygwin window.
- Use ssh-keygen to create an SSH key.
Note - Follow the latest steps and guides on the ASF website at http://www.apache.org/dev/openpgp.html#generate-key as you need to disable using SHA1 and new keys should be 4096 bits.
Note - ssh-keygen dsa key type only accept 1024 bits; use rsa / 4096 bits instead and adjust all the id_dsa* reference to id_rsa*.
Code Block none none $ ssh-keygen -t dsa -b 4096
...
- The program's default values should be fine. For the "Real Name" enter your full name (ie. Stan Programmer). For the "e-mail address" enter your apache address (ie. sprogrammer@apache.org). You will also be required to enter a "passphrase" for the GPG key generation. Keep track of this as you will need this for the Release processing.
Info - The generated keys are stored in $HOME/.gnupg or (*nix), %HOME%\Application Data\gnupg subdirectory (Windows XP) or C:\ProgramData\GNU\etc\gnupg (Windows 7).
- "gpg --version" shows the GnuPG's home location.
- Save the content in this subdirectory to a safe media. This contains your private key used to sign all the release materials.
...