What's our position on this? Is it time to declare flood abandoned? Are there any users of this tool who want to contribute to maintaining it? Offhand, I expect it does not support TLS/SNI. Nor HTTP/2. If abandoned, we can simply remove www.a.o/dist/httpd/flood to resolve Daniel's issue. If not abandoned, regenerating the tarball from should result in the same file, which can then be signed. Thoughts? On Sat, Aug 19, 2017 at 12:43 AM, Daniel Gruno <humbedooh@xxxxxxxxxx> wrote: > Hi folks, > > It appears that flood 0.4 ( > https://dist.apache.org/repos/dist/release/httpd/flood/ ) was never > signed by anyone, which should likely be fixed. As this was, AIUI, > released 8 years ago, I cannot in good conscience sign for it myself. > > Either we have someone who was present back then sign for it, or we > should remove the release, pursuant to our release policy. > > With regards, > Daniel. --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx