<p>[if-any logo]
<a href="[link]"><img align="right" src="[logo]" border="0"
/></a>[end]
The currently selected mirror is <b>[preferred]</b>. If you
encounter a
problem with this mirror, please select another mirror. If all
mirrors are failing, there are <i>backup</i> mirrors (at the
end of
the mirrors list) that should be available.</p>
<form action="[location]" method="get" id="SelectMirror">
Other mirrors: <select name="Preferred">
[if-any http]
[for http]<option value="[http]">[http]</option>[end]
[end]
[if-any ftp]
[for ftp]<option value="[ftp]">[ftp]</option>[end]
[end]
[if-any backup]
[for backup]<option value="[backup]">[backup]
(backup)</option>[end]
[end]
</select>
<input type="submit" value="Change" />
</form>
<p>You may also consult the <a
href="http://www.apache.org/mirrors/">complete
list of mirrors</a>.</p>
More advice on creating a good project page is given
[below](#best_practice)
Once the download page and the script have been uploaded to the project
website (in the usual manner), make the script executable. For example:
% svn propset svn:executable yes download.cgi
% svn commit
All that remains is to wait for the main website to sync.
# Remind Users To Check Sums And Signatures # {#remind-users}
Apache releases are downloaded from mirrors. It is therefore important that
users understand that they should always check the md5 sums and (if
possible) also verify the OpenPGP compatible signature. The content of the
release download page plays a critical role in this education process.
Please provide clear and easy links to the KEYS, sums and signatures from
the download release page or include the information directly in the page
itself. This [page](http://httpd.apache.org/download.cgi) is a good
example.
Include a reminder text with links to more information for users. For
example:
> **Note:** when downloading from a mirror please check the
> [md5sum](http://www.apache.org/dev/release-signing#md5) and verify the
> [OpenPGP](http://www.apache.org/dev/release-signing#openpgp) compatible
> signature from the main [Apache site](http://www.apache.org). Links are
> provided above (next to the release download link). This
> [KEYS](http://www.apache.org/dist/ws/axis2/KEYS) file contains the public
> keys used for signing release. It is recommended that (when possible) a
> [web of trust](http://www.apache.org/dev/release-signing#web-of-trust) is
> used to confirm the identity of these keys. For more information, please
> see the [Apache Release FAQ](http://www.apache.org/dev/release.html).
# Ensure Browser Displays Linked URL # {#linked-urls}
Users need to understand the origin of the artifacts, signatures and sums
downloaded. Check that the stylesheets used do not obscure the linked url.
It is best to use a simple, plain style for download links. Note that some
of the maven style sheets may obscure some external links in some browsers
(in particular MSIE).
# Support for bypassing the 24 hour rule # {#less-than-24hr}
Normally you should [wait 24 hours](release#release-announcements) after
uploading a release to