why not just sign the binaries with gnupg?
This has been suggested before and I avoided it due to laziness. Looks like this is the way to go, though. I'll drop the SSL.
I spent some time looking to see how difficult it is to get things going on SourceForge. I'm no unix guru, but was able to get this to work (executing on passwordmaker.org):
rsync -v -a -e ssh /home/ejung/public_html/ [email protected]:/home/groups/p/pa/passwordmaker/htdocs/
This mirrored all the content on
http://passwordmaker.org to
http://passwordmaker.sourceforge.net, but a lot of it is broken because of absolute directory paths; e.g., almost every file has this at the top and bottom:
<?php include "/home/ejung/public_html/includes/header.php"; ?>
...
...
...
<?php include "/home/ejung/public_html/includes/footer.php"; ?>
but on sourceforge,
/home/ejung/public_html/includes/ should be
/home/groups/p/pa/passwordmaker/htdocs/includes/. I know there are powerful tools like sed which could probably do a global-search-and-replace for strings like this, but I've got no idea how to use them. It took me a full day just to figure out how to get rsync to work.
Anyone have any experience with this? I'd be willing to grant you full access to the sourceforge site, or, if you'd rather not do it personally, you could teach me what to do.
-Eric
p.s. i tried making
/home/ejung/public_html/includes/ a symbolic link, but it seems symbolic links cannot point to directories (or vice-versa, whatever :))